Syncsort’s Alliance AES/400, the only NIST-validated AES encryption for IBM i, helps organizations meet the data security requirements of PCI, HIPAA, GDPR, SOX, and more by encrypting sensitive information in database fields, on backup tapes, in Save Files, in IFS files, in reports, and everywhere data resides on IBM i.
Integration with IBM i FIELDPROC enables high-performance encryption without application changes. To meet encryption key management requirements, separate keys from the data they protect, and enforce separation of duties, Syncsort’s preferred solution for key management is Townsend Security’s Alliance Key Manager.
- “Push Button” Automatic Encryption without impacting applications
- The only NIST Validated AES Encryption product on the market
- Optimized for Performance
- Meet Compliance Requirements
- Interfaces with Alliance Key Manager
In release V7R1 of the IBM i operating system IBM released a new column-level API called FIELDPROC. IBM also referred to this as “Transparent Encryption.” This new feature of Db2/400 provides for an exit point at the column level and many IBM i users will be able to implement encryption and decryption without making any changes to their application source code. IBM does not provide any exit point software, they only provide the ability to register a user exit point for the column. While IBM initially called this “Transparent Encryption,” the FIELDPROC exit point can be used for many purposes other than encryption. For example, an application can tokenize data, monitor column level usage, mask data, and so forth. Encryption is probably the most common use of the API.
IBM does not provide actual exit point software. That is the responsibility of software vendors and end customers. Syncsort provides software to perform automatic encryption and security of Db2/400 columns using the IBM FIELDPROC exit point in the Alliance AES/400 product. AES/400 integrates user access controls, context sensitive application access controls, audit and system logging, and many other features needed to make the FIELDPROC implementation secure for IBM i users.