On 11/2/2013 7:34 PM, Peter Relson wrote:
SRBs are the same level of security exposure that APF-authorized tasks are. So if an application is already APF-authorized, switching to enclave SRBs is not intrinsically more of a security exposure than already existed. It is true that SRBs are more likely to tend to be key 0 than authorized tasks, but that is not a security exposure. That is a "greater potential for screwing up a system due to overlay of something critical" exposure.
And, the good ol' SPKA instruction helps tremendously here... -- Edward E Jaffe Phoenix Software International, Inc 831 Parkview Drive North El Segundo, CA 90245 http://www.phoenixsoftware.com/ ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
