With version 5.1.9 FLAM support read and write of OpenPGP files (binary or base encoded) conform to RFC4880. Currently a PKCS#11 and IBM-CCA (ICSF) solution for RSA based keys are supported over the new FLAM key management extension in version 5 (FKM5). Based on this support for hardware security modules (HSM) the solution is PCIDSS conform and used by our customers for credit card ordering.
The management of the static PGP primary and sub keys requirs only a CCA/ICSF PKDS or data object support by PKCS#11. No other key stores must be managed with FLAM to read and write OpenPGP files.
On z/OS, USS or zLinux the mass data encryption is accelorated by CPACF and on other platforms AES acceloration of the certain CPUs are used.
The first version of this support includes Symmetric encrypted and semmetric encrypted and integrity protected data packets. Additional the 3 defined compression algorithms are supported.
The read of PGP files can be used complete transparent by application using our byte, stream or record interfaces.
To the operational read and write using the CONV, XCNV DIFF and other commands a new key management command was added to generate, export, import, delete and list PGP keys. This basic key management functions support ASCII Armor or binary PGP key files import and export.