ITschak Mugzach wrote: >PE is much cheaper, CPU wise, than a field level encryption as it use bulk
>encryption. encrypting field by field is much more expensive and affect >elapse as well. Of course. That's part of the attraction. Yes, field-level is more expensive. It's also more secure. And with format-preserving data protection, you often don't need to decrypt to do processing, so it can be essentially free for many use cases. >I believe that what IBM is doing is to make the mainframe a file server. >and this is the correct way to use the data. Don't move the entire >dataset/database outside the mainframe and the ESM domain, but ask for the >data you need at the record and key levels. much like any other >file/database server is used. Also a fine idea. But that's not how IBM pushes the encryption, nor how people use it (yet?). >PE is not for those who have access to the data, from the local domain, but >to protect the access to data by other terms (shared dasd, backup, etc.). Again, sure, but that isn't how IBM pushes it, nor how people think it will protect them. That's the real problem: people think it solves problems it doesn't. .phsiii ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN