Data Encryption
Data Encryption helps secure traffic between the client computer and Host Integration Server on a per-user basis. There is a client component and a server component. The data encryption is implemented transparently to any application that is written to the Host Integration Server APIs (application program interfaces). Any software, such as a third-party emulator, that is written to use the Host Integration Server client APIs will automatically benefit from the encryption.
Host Integration Server lets you encrypt data for client-to-server and server-to-server communications.
Client-to-server encryption prevents information from being sent in clear text between Host Integration Server client workstations and Host Integration Server computers. Data encryption enhances network security on the client-to-server communications path for all applications using Host Integration Server client connections, including 3270/5250 emulators and APPC logon IDs and passwords. Data encryption is enabled by default.
Server-to-server encryption can be used to help provide more secure communications across your network, the Internet, or any other wide area network. If a user enables data encryption, information transferred through Distributed Link Service (DLS) is automatically more secure.
Host Integration Server lets you encrypt data for client-to-server and server-to-server communications.
Client-to-server encryption prevents information from being sent in clear text between Host Integration Server client workstations and Host Integration Server computers. Data encryption enhances network security on the client-to-server communications path for all applications using Host Integration Server client connections, including 3270/5250 emulators and APPC logon IDs and passwords. You can enable data encryption on a user-by-user basis using the Host Integration Server SNA Manager.
Server-to-server encryption can be used to provide more secure communications across your network, the Internet, or any other wide area network. If a user enables data encryption, information transferred through the Distributed Link Service (DLS) is automatically secure.
Data encryption is enabled for Distributed Link Service by adding the domain user account under which Host Integration Server services such as SnaBase or SnaServer are running to the SNA subdomain. The actual encryption is implemented in the transport providers layer of the Host Integration Server architecture. You can then enable data encryption settings for the user account, as described above.