Pervasive Encryption: AT-TLS, Upgrading to TLSv1.2 and Preparing for TLSv1.3
Project and Program: Enterprise Data Center
, Security and Compliance
, SHARE Pittsburgh 2019
With ever-increasing data privacy regulations and policies, more and more z/OS users are turning to z/OS Communications Server's Application Transparent Transport Layer Security (AT-TLS) to protect their z/OS network traffic. And as security researches discover weaknesses in older SSL and TLS protocol versions, AT-TLS has proven to be a solid approach to upgrading to TLSv1.2 and its strong cipher suites. Well hang on to your hats, because the new TLSv1.3 protocol is just around the corner! Approved as a standard (RFC 8449) in August of 2018, TLSv1.3 is sure to start appearing in those data protection regulations and in your security auditor's lists of priorities. The good news is that TLSv1.3 is coming to z/OS System SSL and AT-TLS in the not-too-distant future. In this session the speaker will start with an AT-TLS overview and cover some of the common trouble areas in upgrading from older SSL or TLS versions to TLSv1.2. From there we'll look at some of the significant differences between TLSv1.3 and its predecessors, explore how AT-TLS and System SSL will be updated for TLSv1.3 and discuss some ideas for making the transition to TLSv1.3 a smooth one.
Complete the survey for this session towards earning the Security Warrior digital badge: http://bit.ly/SHARE25825-Chris Meyer-IBM Corporation
Back to Proceedings File Library