The IBM PCI Cryptographic Coprocessor adds a high-security environment to your Windows NT®, Windows 2000®, AIX®, OS/400®, z/OS®, and OS/390® server systems for DES, RSA, and DSA cryptographic functions and sensitive custom applications. The PCI board incorporates specialized electronics to off-load your servers from time-consuming cryptographic functions while providing a tamper-responding, secure computing environment for the storage of keys and performing sensitive processing. Certification of the hardware under FIPS PUB 140-1 at levels 3 and 4 assures a high-integrity processing environment.

The leadership product for high-security cryptography and secure computing is now available for all IBM server platforms and many personal computers. The tamper-responding design has been certified under the USA FIPS 140-1 standard at levels 3 and 4, and has received German ZKA approval for critical financial transaction system processing on z900 Servers.

The PCI Cryptographic Coprocessor encapsulates a 486-class processing subsystem within a tamper-sensing and tamper-responding environment where you can run security-sensitive processes. A multi-tasking control program gives you access to high performance electronics for DES and public key algorithms. A cryptographic quality random number generation facility and large, secure, persistent data storage complete the physical system. Except for a very small bootstrap loader, all software is loaded into the Coprocessor from your server environment. Only digitally signed software that is validated by the Coprocessor is acceptable. The sophisticated code loading controls enable you to employ signed software from IBM, other vendors, or code that you create using toolkits available from IBM.

IBM supplies two cryptographic-system implementations, and toolkits for custom application development.

• The PKCS #11, version 2.01 implementation creates a high-security solution for application programs developed for this industry-standard API.
• The IBM Common Cryptographic Architecture implementation provides many functions of special interest in the finance industry and a base on which custom processing and cryptographic functions can be added.

For additional information, see the product summary page.

The product summary pages will introduce you to the Coprocessor and its software options. More detailed information in the product publications such as the General Information Manual can be downloaded in PDF format from the library. Product ordering pages explain how to obtain the Coprocessor and its software downloads. Refer to the support pages to find education, ask questions, check for software updates, or locate other support services.

The PCI Cryptographic Coprocessor is one of the IBM Security products that provide solutions to many of your security needs.

We want to hear from you! If you have comments or questions about the product or this Web site, please contact the Crypto team.

TM: A Certification Mark of NIST, which does not imply product endorsement by NIST, the U.S. or Canadian Governments.
IBM, and AIX are registered trademarks of IBM Corporation.
Windows NT and Windows 2000 are registered trademarks of Microsoft Corporation.
SET™ Secure Electronic Transaction, Secure Electronic Transaction, SET and the SET Secure Electronic Transaction design mark are trademarks and service marks owned by SET Secure Electronic Transaction LLC.