3.3 Security Enforcement: SSL/TLS Support
The Oracle TMA TCP for CICS interface supports secure communication over network links between Oracle TMA TCP gateways and Oracle TMA TCP CICS applications. Using TLS1.2, the data is encrypted.
Oracle TMA TCP gateway supports the following options:
- TCP: It is compatibility with the previous version of the Oracle TMA TCP CICS component, which means raw TCP connections without SSL support, with no policy files, rules, or certificates.
- SSL (default value): It refers to the connection between the Handler/ Requestor on the CICS side and the Oracle TMA TCP gateway on the Tuxedo end are SSL enabled with two-way authentication, which has been configured with AT-TLS rules, policy agents, and certificates.
Ciphers supported: in addition to a wide range of ciphers supported by z/OS:
TLS_RSA_WITH_AES_256_CBC_SHA256TLS_RSA_WITH_AES_256_GCM_SHA384TLS_RSA_WITH_AES_128_CBC_SHA256TLS_RSA_WITH_AES_128_GCM_SHA256TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256