Tuning security performance
Use the following procedures to tune the performance, without compromising your security settings.
About this task
Important: Performance degradation
may be experienced on platforms running antivirus software. Performance
Degradation may vary between antivirus software vendor and/or features
that are enabled. WebSphere®
Application Server has no unique dependencies or special requirements
when using antivirus software. Contact your antivirus vendor for
information on how this impact may be mitigated
Enabling security
decreases performance. The following tuning parameters provide ways
to minimize this performance impact.While it is not practical to run WebSphere Application Server for z/OS® without
security enabled, it is possible to perform certain tuning techniques
to make the Application Server run better on z/OS.
These techniques are documented in detail in Security tuning tips.
Procedure
Disable security on any application servers that do not need security. You can disable security in the administrative console by clicking Security > Global security and deselecting the Enable administrative security option.
- Fine-tune the Authentication cache timeout value on the Authentication mechanisms and expiration panel in the administrative console. For more information, see the Configurações de segurança global topic.
- Configure the security cache properties. For more information, see the Configurações do Cache de Autenticação topic.
- Enable the Enable SSL ID tracking option on the Session management panel in the administrative console.
Improve the performance of Web Services Security by downloading a Java™ Cryptography Extension (JCE) unlimited jurisdiction policy file that does not have restrictions on cryptography strength. See the information about tuning Web Services Security for Version 8.0 applications for details.
Modify the RACF® security settings as documented in the Security tuning tips article.
Read the Secure Sockets Layer performance tips and Tuning security configurations topics for more information.
Read the Tuning security configurations article for more information.