KN3 zERT SSH Summary Attributes

Use the zERT SSH Summary attributes to monitor all zERT SSH security sessions.

Origin Node Unique identifier for the TCP/IP stack being displayed.

Sysplex Name The name of the sysplex that the monitored system is part of. The format is a text string no longer than 8 characters.

System ID The SMF system ID. The format is a text string no longer than 4 characters.

TCPIP STC Name The jobname of the TCP/IP address space.

Collection Time The time and date of the data sampling.

Interval Length The length of time of the data sampling in hh:mm:ss format.

Application Name The jobname associated with the application address space that opened and bound the socket associated with the security session.

Protocol The IP Protocol for the security session. The format is an unsigned integer that can have the following possible values:
<blank>=0    
TCP=6 
UDP=17

Server IP Address The server IP address. The format is a text string of up to 45 characters. The IPV6 Session attribute indicates whether this is an IPV6 IP address or not.

Client IP Address The client IP address. The format is a text string of up to 45 characters. The IPV6 Session attribute indicates whether this is an IPV6 IP address or not.

Port Range Start The starting value for the server port range. The format is an unsigned integer.

Port Range End The ending value for the server port range. The format is an unsigned integer.

Session ID The session identifier that uniquely identifies a security session based on the server and client endpoints plus the significant security attributes of the session. This is a text string of up to 42 characters.

SSH Source Source of the information of the security session. The format is an unsigned integer that can have one of the following values:
<blank>=0X0000                                 
Stream observation=0X0001               
Cryptographic protocol provider=0X0002  
SSH Version The protocol version being used for the security session. The format is an unsigned integer that can have one of the following values:
Unknown=0X0000           
Protocol version 1=0X0001
Protocol version 2=0X0002
SSH Cryptographic Operations The type of cryptographic operation being used for the security session. The format is an unsigned integer that can have one of the following values:
<blank>=0X0000                               
Encrypt-then-MAC outbound=0X0040      
Encrypt-then-MAC inbound=0X0080       
Encrypt-then-MAC bidirectional=0X00C0 
SSH Peer Authentication Method The first or only authentication method used. The format is an unsigned integer that can have one of the following values:
Unknown=0X0000             
None=0X0001                
Password=0X0002            
Public key=0X0003          
Host-based=0X0004          
Rhosts=0X0005              
RhostsRSA=0X0006           
RSA=0X0007                 
Keyboard-interactive=0X0008
Challenge-response=0X0009  
Control socket 1=0X000A    
GSSAPI with MIC=0X000B     
GSSAPI Key exchange=0X000C 
SSH Peer Authentication Method 2 The last authentication method if multiple methods are in use. The format is an unsigned integer that can have one of the following values:
Unknown=0X0000              
None=0X0001                 
Password=0X0002             
Public key=0X0003           
Host-based=0X0004           
Rhosts=0X0005               
RhostsRSA=0X0006            
RSA=0X0007                  
Keyboard-interactive=0X0008 
Challenge-response=0X0009   
Control socket 1=0X000A     
GSSAPI with MIC=0X000B      
GSSAPI Key exchange=0X000C  
SSH Inbound Encryption Algorithm The encryption algorithm for inbound traffic. The format is an unsigned integer that can have one of the following values:
Unknown=0X0000          
None=0X0001             
DES=0X0002              
DES 40=0X0003           
3DES=0X0004             
RC2 40=0X0005           
RC2 128=0X0006          
RC2=0X0007              
RC4 40=0X0008           
RC4 128=0X0009          
RC4 256=0X000A          
RC4=0X000B              
AES CBC 128=0X000C      
AES CBC 192=0X000D      
AES CBC 256=0X000E      
AES CTR 128=0X000F      
AES CTR 192=0X0010      
AES CTR 256=0X0011      
AES GCM 128=0X0012      
AES GCM 256=0X0013      
AES CCM 128=0X0014      
AES CCM 256=0X0015      
AES CCM8 128=0X0016     
AES CCM8 256=0X0017     
AES 256=0X0018          
BLOWFISH=0X0019         
BLOWFISH CBC=0X001A     
CAST 128 CBC=0X001B     
ARCFOUR 128=0X001C      
ARCFOUR 256=0X001D      
ARCFOUR=0X001E          
RIJNDAEL CBC=0X001F     
ARIA 128 CBC=0X0020     
ARIA 128 CBC=0X0021     
ARIA 256 CBC=0X0022     
ARIA 128 GCM=0X0023     
ARIA 256 GCM=0X0024     
CAMELLIA 128 CBC=0X0025 
CAMELLIA 256 CBC=0X0026 
CAMELLIA 128 GCM=0X0027 
CAMELLIA 256 GCM=0X0028 
CHACHA20 POLY1305=0X0029
IDEA CBC=0X002A         
SEED CBC=0X002B         
FORTEZZA CBC=0X002C     
GOST28147=0X002D        
TWOFISH CBC 256=0X002E  
TWOFISH CBC=0X002F      
TWOFISH CBC 192=0X0030  
TWOFISH CBC 128=0X0031  
SERPENT CBC 256=0X0032  
SERPENT CBC 192=0X0033  
SERPENT CBC 128=0X0034  
SSH Inbound Message Authentication The message authentication algorithm that is used by the cipher suite for inbound messages. The format is an unsigned integer that can have one of the following values:
Unknown=0X0000          
None=0X0001             
MD2=0X0002              
HMAC-MD5=0X0003         
HMAC-SHA1=0X0004        
HMAC-SHA2-224=0X0005    
HMAC-SHA2-256=0X0006    
HMAC-SHA2-384=0X0007    
HMAC-SHA2-512=0X0008    
AES-GMAC-128=0X0009     
AES-GMAC-256=0X000A     
AES-128-XCBC-96=0X000B  
HMAC-SHA2-256-128=0X000C
HMAC-SHA2-384-192=0X000D
HMAC-SHA2-512-256=0X000E
HMAC-MD5-96=0X000F      
HMAC-SHA1-96=0X0010     
UMAC-64=0X0011          
UMAC-128=0X0012         
RIPEMD-160=0X0013       
SSH Outbound Encryption Algorithm The encryption algorithm used by the cipher suite for outbound messages. The format is an unsigned integer that can have one of the following values:
Unknown=0X0000          
None=0X0001             
DES=0X0002              
DES 40=0X0003           
3DES=0X0004             
RC2 40=0X0005           
RC2 128=0X0006          
RC2=0X0007              
RC4 40=0X0008           
RC4 128=0X0009          
RC4 256=0X000A          
RC4=0X000B              
AES CBC 128=0X000C      
AES CBC 192=0X000D      
AES CBC 256=0X000E      
AES CTR 128=0X000F      
AES CTR 192=0X0010      
AES CTR 256=0X0011      
AES GCM 128=0X0012      
AES GCM 256=0X0013      
AES CCM 128=0X0014      
AES CCM 256=0X0015      
AES CCM8 128=0X0016     
AES CCM8 256=0X0017     
AES 256=0X0018          
BLOWFISH=0X0019         
BLOWFISH CBC=0X001A     
CAST 128 CBC=0X001B     
ARCFOUR 128=0X001C      
ARCFOUR 256=0X001D      
ARCFOUR=0X001E          
RIJNDAEL CBC=0X001F     
ARIA 128 CBC=0X0020     
ARIA 128 CBC=0X0021     
ARIA 256 CBC=0X0022     
ARIA 128 GCM=0X0023     
ARIA 256 GCM=0X0024     
CAMELLIA 128 CBC=0X0025 
CAMELLIA 256 CBC=0X0026 
CAMELLIA 128 GCM=0X0027 
CAMELLIA 256 GCM=0X0028 
CHACHA20 POLY1305=0X0029
IDEA CBC=0X002A         
SEED CBC=0X002B         
FORTEZZA CBC=0X002C     
GOST28147=0X002D        
TWOFISH CBC 256=0X002E  
TWOFISH CBC=0X002F      
TWOFISH CBC 192=0X0030  
TWOFISH CBC 128=0X0031  
SERPENT CBC 256=0X0032  
SERPENT CBC 192=0X0033  
SERPENT CBC 128=0X0034  
SSH Outbound Message Authentication The message authentication algorithm that is used by the cipher suite for outbound messages. The format is an unsigned integer that can have one of the following values:
Unknown=0X0000           
None=0X0001              
MD2=0X0002               
HMAC-MD5=0X0003          
HMAC-SHA1=0X0004         
HMAC-SHA2-224=0X0005     
HMAC-SHA2-256=0X0006     
HMAC-SHA2-384=0X0007     
HMAC-SHA2-512=0X0008     
AES-GMAC-128=0X0009      
AES-GMAC-256=0X000A      
AES-128-XCBC-96=0X000B   
HMAC-SHA2-256-128=0X000C 
HMAC-SHA2-384-192=0X000D 
HMAC-SHA2-512-256=0X000E 
HMAC-MD5-96=0X000F       
HMAC-SHA1-96=0X0010      
UMAC-64=0X0011           
UMAC-128=0X0012          
RIPEMD-160=0X0013B       
SSH Key Exchange Method The key exchange method that is used by the cipher suite.The format is an unsigned integer that can have one of the following values:
Unknown=0X0000                            
None=0X0001                               
Diffie-Hellman-group-exchangeSHA256=0X0002
Diffie-Hellman-group-exchangeSHA1=0X0003  
Diffie-Hellman-group14-SHA1=0X0004        
Diffie-Hellman-group1-SHA1=0X0005         
ECDH-SHA2-NISTP256=0X0006                 
ECDH-SHA2-NISTP384=0X0007                 
ECDH-SHA2-NISTP521=0X0008                 
GSS-GROUP1-SHA1=0X0009                    
GSS-GROUP14-SHA1=0X000A                   
GSS-GEX-SHA1=0X000B                       
ECMQV-SHA2=0X000C                         
GSS=0X000D                                
RSA1024-SHA1=0X000E                       
RSA2048-SHA256=0X000F                     
DH G14 SHA256=0X0010                      
DH G16 SHA512=0X0011                      
DH G18 SHA512=0X0012                      
CRV22519 SHA256=0X0013                    
SSH Server Key Type The raw key type used by the cipher server. The format is an unsigned integer that can have one of the following values:
Unknown=0                    
None=1                       
RSA=2                        
DSA=3                        
Diffie-Hellman=4             
Elliptic Curve Cryptography=5
RSA1=6                       
RSA CERT=7                   
DSA CERT=8                   
ECDSA CERT=9                 

SSH Server Key Length The raw key length used the cipher server.

SSH Client Key Type The raw key type used by the client server. The format is an unsigned integer that can have one of the following values:
Unknown=0                    
None=1                       
RSA=2                        
DSA=3                        
Diffie-Hellman=4             
Elliptic Curve Cryptography=5
RSA1=6                       
RSA CERT=7                   
DSA CERT=8                   
ECDSA CERT=9                 

SSH Client Key Length The raw key length used the client server.

SSH Server Certificate Signature The server certificate signature method used by the cipher suite. The format is an unsigned integer that can have one of the following values:
Unknown=0X0000            
None=0X0001               
RSA with MD2=0X0002       
RSA with MD5=0X0003       
RSA with SHA1=0X0004      
DSA with SHA1=0X0005      
RSA with SHA-224=0X0006   
RSA with SHA-256=0X0007   
RSA with SHA-384=0X0008   
RSA with SHA-512=0X0009   
ECDSA with SHA1=0X000A    
ECDSA with SHA-224=0X000B 
ECDSA with SHA-256=0X000C 
ECDSA with SHA-384=0X000D 
ECDSA with SHA-512=0X000E 
DSA with SHA-224=0X000F   
DSA with SHA-256=0X0010   
SSH Server Certificate Encryption The server certificate encryption method used by the cipher suite. The format is an unsigned integer that can have one of the following values:
Unknown=0X0000 
None=0X0001    
RSA=0X0002     
DSA=0X0003     
ECDSA=0X0004   
SSH Server Certificate Digest The server certificate digest algorithm used by the cipher suite.The format is an unsigned integer that can have one of the following values:
Unknown=0X0000
None=0X0001   
MD2=0X0002    
MD5=0X0003    
SHA1=0X0004   
SHA-224=0X0005
SHA-256=0X0006
SHA-384=0X0007
SHA-512=0X0008
SSH Server Certificate Key Type The server certificate key type used by the cipher suite. The format is an unsigned integer that can have one of the following values:
Unknown=0X0000                     
None=0X0001                        
RSA=0X0002                         
DSA=0X0003                         
Diffie-Hellman=0X0004              
Elliptic Curve Cryptography=0X0005 
RSA1=0X0006                        
RSA CERT=0X0007                    
DSA CERT=0X0008                    
ECDSA CERT=0X0009                  
ED25519=0X000A                     
ED25519 CERT01=0X000B              

SSH Server Certificate Key Length The server certificate key length used by the cipher suite.

SSH Client Certificate Signature The Client certificate signature method used by the cipher suite. The format is an unsigned integer that can have one of the following values:
Unknown=0X0000            
None=0X0001               
RSA with MD2=0X0002       
RSA with MD5=0X0003       
RSA with SHA1=0X0004      
DSA with SHA1=0X0005      
RSA with SHA-224=0X0006   
RSA with SHA-256=0X0007   
RSA with SHA-384=0X0008   
RSA with SHA-512=0X0009   
ECDSA with SHA1=0X000A    
ECDSA with SHA-224=0X000B 
ECDSA with SHA-256=0X000C 
ECDSA with SHA-384=0X000D 
ECDSA with SHA-512=0X000E 
DSA with SHA-224=0X000F   
DSA with SHA-256=0X0010   
SSH Client Certificate Encryption The client certificate encryption method used by the cipher suite. The format is an unsigned integer that can have one of the following values:
Unknown=0X0000  
None=0X0001     
RSA=0X0002      
DSA=0X0003      
ECDSA=0X0004    
SSH Client Certificate Digest The Client certificate digest algorithm used by the cipher suite. The format is an unsigned integer that can have one of the following values:
Unknown=0X0000
None=0X0001   
MD2=0X0002    
MD5=0X0003    
SHA1=0X0004   
SHA-224=0X0005
SHA-256=0X0006
SHA-384=0X0007
SHA-512=0X0008
SSH Client Certificate Key Type The Client certificate key type. The format is an unsigned integer that can have one of the following values:
Unknown=0                     
None=1                        
RSA=2                         
DSA=3                         
Diffie-Hellman=4              
Elliptic Curve Cryptography=5 
RSA1=6                        
RSA CERT=7                    
DSA CERT=8                    
ECDSA CERT=9                  

SSH Client Certificate Key Length The Client certificate key length.