Data Encryption

You can use TIBCO MFT Platform Server for z/OS to encrypt data while sending the data to a remote destination. The data is then decrypted when it is received at the remote destination.

On TIBCO MFT Platform Server for z/OS, by using the ENCRYPT parameter, you can specify whether to use data encryption, or specify the encryption algorithm to be used for a transfer. However, the platform server always encrypts all passwords by using a proprietary encryption algorithm. If you specify an encryption algorithm (Data Encryption Standard, Blowfish, or AES), the platform server encrypts the password a second time by using the specified encryption algorithm, and optionally encrypts the data to be transferred. If no encryption algorithm is specified, the platform server still encrypts the passwords by using its proprietary encryption algorithm.

Note: No special APIs, preprocessing tasks, or postprocessing steps are required for the platform server to encrypt data.
TIBCO MFT Platform Server for z/OS supports the following encryption algorithms:
  • Data Encryption Standard (DES)
  • Blowfish
  • AES

For more information, see Data Encryption Algorithms.

TIBCO MFT Platform Server for z/OS provides the following methods for you to specify an encryption algorithm by using the ENCRYPT parameter:
  • GLOBAL definition
  • NODE definition
  • Transfer Interface definition

For more information, see Defining Data Encryption.