• The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
Menu
  • The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
  • Townsend Automates IBM i Encryption with ‘Field Proc’

    May 3, 2011 Alex Woodie

    Implementing field-level database encryption on the IBM i server is about to get a whole lot easier, according to the folks at Townsend Security Solutions. The company today is announcing the general availability of AES/400 version 6, which adds new features that automate the implementation of encryption and decryption processes with DB2/400 data using the so-called “field procedure” function that was released with IBM i 7.1.

    Implementing field- or column-level encryption on DB2/400 was a long and painful task prior to the release of the FIELDPROC exit point with IBM i 7.1 a year ago. Due to intricacies of DB2/400 and how it exposes data to programs, companies typically had to make extensive modifications to their IBM i programs or their databases in order to encrypt certain fields in their DB2/400 database records, such as credit card numbers or Social Security numbers.

    The time and effort required to implement encryption was greatly simplified with the field procedure exit point in IBM i 7.1. The field proc–which actually addresses the difficulties of automating the decryption of data in DB2/400 more than encryption, which was easier to automate–is a brilliant piece of database programming, says Townsend Security president and CEO John Earl.

    “This is the biggest change to the database in my memory,” Earl says. “More than hiding the complexity of encryption, it enables something that simply wasn’t possible before without doing a big application or database architecture change. … I think they have done an outstanding job.”

    Townsend Security was one of two security software vendors that announced their intention to support the field proc when IBM i 7.1 was unveiled a year ago. Today, the Olympia, Washington-based company is expected to announce that it has delivered full support for the field proc with AES/400 version 6, which became available at the end of May.

    While the field proc technology made encryption and decryption processes more automated, most IBM i shops will choose a third-party solution like AES/400 to implement encryption and key management procedures because of the reduced complexity.

    Implementing field- and column-level encryption with AES/400 6.0 is simplified to the point where it’s “push-button” easy, Earl says.

    “Essentially we take you to a screen where you pick your field and say ‘I want to do field proc with that field,'” he says. “Once I enroll the field with field proc, AES/400 6.0 goes through and encrypts all of those fields in the entire database, so you don’t have to have a conversion process.”

    Instead of spending a couple of weeks implementing encryption, IBM i administrators could complete a small encryption project in a matter of hours, Earl says. “Our tag line on this product is ‘Your encryption project just got easier,'” he says. “What we’ve worked on with this release is simplifying the whole effort, to make it easier and faster to implement, and to lower the stress level in the IT shop, so they can do encryption without having to become encryption geniuses. Just push the button and let it happen.”

    Data masking is another area of improvement with AES/400 6.0. Support for data masking policies enables IBM i administrators to specify whether a particular user or group of users will be able to see the full value of a field, or whether parts of the value will be replaced by asterisks.

    Support for external key stores, which is part of the “dual control” mandate of PCI and HIPAA security guidelines, is another new feature in 6.0, Earl says. Best practices require that keys be stored on a different platform than where the encrypted data is stored. It also requires that the person who is responsible for data also does not posses the decryption keys.

    Earl puts it this way: “If I’m QSECOFR or somebody with ALLOBJ authority on that particular AS/400, and my keys are there, then I’m going to have complete access to the encrypted credit card data and the keys that will decrypt that data,” he says. “PCI says, that doesn’t work. You’ve got to have separation of duties … so that it requires collusion by two different people in order to compromise the data.”

    Companies can still store their encryption keys on the same IBM i server that houses encrypted data. But it’s not a recommended long-term approach, Earl says.

    While Townsend isn’t the first to deliver field proc support in an IBM i encryption product, Earl is confident that it has the right mix of software and credentials to find success. “We still have the only NIST certified database encryption tool on the i. IBM has done validation on every other platform except for the i. Nobody else has done this, so it’s kind of a great place to be.”

    RELATED STORIES

    PTSS First to Achieve NIST Compliance for DB2/400 Encryption

    Pat Townsend Updates MFT Offering for i/OS

    PowerTech to Resell Pat Townsend’s Encryption Offering

    Pat Townsend to Supply Encryption Technology to Quantum

    Pat Townsend Secure with New President

    Pat Townsend Unveils Encryption Key Appliance

    Pat Townsend to Resell Valid’s i5/OS Biometric Authentication



                         Post this story to del.icio.us
                   Post this story to Digg
        Post this story to Slashdot

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Tags:

    Sponsored by
    WorksRight Software

    Do you need area code information?
    Do you need ZIP Code information?
    Do you need ZIP+4 information?
    Do you need city name information?
    Do you need county information?
    Do you need a nearest dealer locator system?

    We can HELP! We have affordable AS/400 software and data to do all of the above. Whether you need a simple city name retrieval system or a sophisticated CASS postal coding system, we have it for you!

    The ZIP/CITY system is based on 5-digit ZIP Codes. You can retrieve city names, state names, county names, area codes, time zones, latitude, longitude, and more just by knowing the ZIP Code. We supply information on all the latest area code changes. A nearest dealer locator function is also included. ZIP/CITY includes software, data, monthly updates, and unlimited support. The cost is $495 per year.

    PER/ZIP4 is a sophisticated CASS certified postal coding system for assigning ZIP Codes, ZIP+4, carrier route, and delivery point codes. PER/ZIP4 also provides county names and FIPS codes. PER/ZIP4 can be used interactively, in batch, and with callable programs. PER/ZIP4 includes software, data, monthly updates, and unlimited support. The cost is $3,900 for the first year, and $1,950 for renewal.

    Just call us and we’ll arrange for 30 days FREE use of either ZIP/CITY or PER/ZIP4.

    WorksRight Software, Inc.
    Phone: 601-856-8337
    Fax: 601-856-9432
    Email: software@worksright.com
    Website: www.worksright.com

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Sponsored Links

    BCD:  FREE Webinar: New Presto 3 - The MOST flexible IBM i Web GUI for green screens. View NOW!
    ECC:  Planning a Windows 7 Rollout? Use our cloud or we can help you build your own!
    Four Hundred Monitor Calendar:  Latest info on national conferences, local events, & Webinars

    IT Jungle Store Top Book Picks

    BACK IN STOCK: Easy Steps to Internet Programming for System i: List Price, $49.95

    The iSeries Express Web Implementer's Guide: List Price, $49.95
    The iSeries Pocket Database Guide: List Price, $59
    The iSeries Pocket SQL Guide: List Price, $59
    The iSeries Pocket WebFacing Primer: List Price, $39
    Migrating to WebSphere Express for iSeries: List Price, $49
    Getting Started with WebSphere Express for iSeries: List Price, $49
    The All-Everything Operating System: List Price, $35
    The Best Joomla! Tutorial Ever!: List Price, $19.95

    Software Sales Rebound at ERP Giant SAP As Growth Stalls, Micro Focus Gets Takeover Attention

    Leave a Reply Cancel reply

Volume 11, Number 16 -- May 3, 2011
THIS ISSUE SPONSORED BY:

New Generation Software
JAMS Job Scheduler
Vision Solutions
Linoma Software
VAULT400

Table of Contents

  • Townsend Automates IBM i Encryption with ‘Field Proc’
  • RPG Skills, LANSA Tools, Plays Well for Music Industry Licensing Company
  • InterForm A/S Gets a Boost from Infor Partnership
  • Halcyon Launches SLA Reporting Tool, iPad Interface
  • COMMON Expo: Your Source for Free Stuff
  • JDA MMS Users Get Incentive to Go Paperless
  • Infor to Consolidate Distribution ERP Suites
  • New VAI Reseller Likes IBM i-to-iPad Integration
  • Kubota Turns Retail Scanner Into Parts Kiosk
  • SEQUEL Software Joins IBM i Solution Edition Program

Content archive

  • The Four Hundred
  • Four Hundred Stuff
  • Four Hundred Guru

Recent Posts

  • POWERUp 2025 –Your Source For IBM i 7.6 Information
  • Maxava Consulting Services Does More Than HA/DR Project Management – A Lot More
  • Guru: Creating An SQL Stored Procedure That Returns A Result Set
  • As I See It: At Any Cost
  • IBM i PTF Guide, Volume 27, Number 19
  • IBM Unveils Manzan, A New Open Source Event Monitor For IBM i
  • Say Goodbye To Downtime: Update Your Database Without Taking Your Business Offline
  • i-Rays Brings Observability To IBM i Performance Problems
  • Another Non-TR “Technology Refresh” Happens With IBM i TR6
  • IBM i PTF Guide, Volume 27, Number 18

Subscribe

To get news from IT Jungle sent to your inbox every week, subscribe to our newsletter.

Pages

  • About Us
  • Contact
  • Contributors
  • Four Hundred Monitor
  • IBM i PTF Guide
  • Media Kit
  • Subscribe

Search

Copyright © 2025 IT Jungle