Consider the advantages

• IBM z15™ (z15) hardware accelerated encryption on every core with Central Processor Assist for Cryptographic Functions (CPACF) designed to provide fast encryption without any application changes

• Crypto Express7S card adds additional capabilities• Designed to meet FIPS, ANSI, PKI and DK standards• Linux allows for ‘clear key’ encryption for data in-flight/at-

rest, and ‘protected key’ encryption for data at-rest• Galois Counter Mode (GCM) encryption for minimum latency

and operation overhead of Java workloads• IBM z/VM® 7.2 and 7.1 provide the prerequisite z15

encryption support to enable the exploitation by Linux guests

Linux on IBM ZThe enterprise platform for mission-critical Linux applications

IBM Z® running Linux® provides the Cloud you want with the privacy and security that you need

ü Secure and openü Resilient and trustworthyü Efficient and economicalü Scalable and flexibleü High performanceü Foundation for Enterprise Hybrid Cloud

Security capabilitiesData encryptionSecurity integrated across the stack and lifecycleSecured isolation

Clear Key, Secure Key, Protected Key and Public Key Infrastructure (PKI) AuditingNetwork Security

Data Privacy Passports

Encryption Everywhere with the privacy and security you need

• IBM Secure Execution for Linux is an innovative and exclusive hardware-based security technology that is built into the z15 systems to protect data while it is in use, eliminating a window of vulnerability that insiders or criminals can exploit

• IBM Data Privacy Passports, available on z15 provides transparent, end-to-end, data-centric protection and privacy. Encrypt your eligible data, grant and revoke access to it, and maintain control of it – even as it moves off the system of record within your enterprise. Data Privacy Passports can help you as you address your regulatory and compliance mandates by tracking, monitoring and reporting consumption of eligible data in your enterprise

• Designed for Evaluation Assurance Level (EAL) 5+ hardware security certification

© 2021 IBM Corporation

State-of-the-art semiconductor technology –IBM z15 Model T01 chip

14 nm SOI • On-chip cryptography acceleration• On-chip compression acceleration• Single Instruction Multiple Data (SIMD)• Out-of-order execution• Hardware transactional memory (HTM)• Separate cores for I/O processing

9.2 billion transistors

Type 8561: 5.2 GHz,up to 12 cores per chip

L1 / L2 cacheon core

2 threads per core, enhanced SMT

L3 cache on chip, L4 cache on

System Controller chip

Environment sustainability and elasticityEnvironmental sustainability and reducing an organization’s carbon footprint is a boardroom issue these days. Running your mission-critical applications on an IBM Z system addresses this business imperative. The extreme performance and scalability of the IBM platform enable clients to move inefficient distributed x86 server farms onto fewer systems to deliver enormous environmental improvements and significant cost savings. It also enables clients to seamlessly activate additional elastic compute capacity to handle unexpected surges in workload without disrupting operations or having to increase the size of the computer room. Linux on Z can deliver extreme performance and scale to on-line transaction processing, database serving and mixed workloads in a far more efficient manner than other computing platforms, reducing software licensing costs, operational costs and your carbon footprint. An example of this is that a z15 single frame system requires 75% less floor space than compared x86 2U servers in racks, running the same workloads and throughput and requires 59% les power per year to operate.

IBM Z has multi-dimensional growth and scalability options

• Provision for peak utilization - dynamically add cores, memory, I/O adapters, devices and network cards -unused resources automatically reallocated after peak

• A single z15 systems can execute up to 1 trillion HTTPS transactions per day• Outstanding scalability, horizontal and vertical, based on the immense total IBM Z capacity• On chip compression acceleration helps to reduce in the size of data to save storage space and also

increase data transfer rates, with reduced CPU consumption• Live virtual server migration capabilities provided with z/VM Single System Image feature and KVM• z/VM offers high levels of resource sharing, data-in-memory techniques and outstanding I/O• Temporary activation of resources through ‘On/Off Capacity on Demand’ at a per-day per-core charge,

permanent activation through ‘Capacity on Demand’• Goal-oriented approach for performance management of a hypervisor

Scale horizontally and vertically without disruptionScale outSc

ale

up

© 2021 IBM Corporation

© 2021 IBM Corporation

Operational EfficiencyIBM Z supports high workload density with up to thousands Linux servers in one box. Scale out to 2.4 million containers in a single z15 system.

Workloads on IBM Z can communicate via fast internal HiperSockets connections, and with Shared Memory Communication even faster, while saving compute resources.

z/VM and IBM Cloud Infrastructure Center offer management of the virtual environment. KVM virtualization enables the use of Linux administration skills on IBM Z. IBM Dynamic Partition Manager supports z/VM and KVM environments.

With IBM Cloud Paks®, Red Hat® OpenShift® Container Platform, and the IBM DevOps software developers and administrators can deliver automation deploy and manage cloud-native applications while utilizing the portability and agility through tight integration with tools and runtimes.

Co-location inside IBM ZIBM Z enables business integration and co-location to reduce complexities, extend services and deploy next generation apps very fast.

Co-locating applications and data on IBM Z—running on Linux, IBM z/OS®, IBM z/VSE® or IBM z/TPF—provide not only the unique opportunity to tightly connect ‘systems of records’ and ‘systems of interaction’, it also allows to build and integrate cloud native applications with existing applications. With IBM Cloud Paks, based on Red Hat OpenShift, developers and administrators have an open environment to quickly build new cloud-native applications, modernize and extend existing applications, and deploy middleware in a consistent manner across multiple clouds.

IBM z/OS Cloud Broker integrates z/OS-based services into the private cloud for a modern cloud native experience, it provides access to z/OS services for consumption by the broader development community. z/OS Cloud Broker enables organizations to protect and leverage their IBM Z investments through integration with their hybrid multicloud environments.

Co-location benefits can be:

• High performance and efficiency – Optimized for data serving, quick response times and less application waits through optimized cache

structure and large cache sizes– High I/O bandwidth due to dedicated I/O processors and memory buffer cache

• Cross-memory data and local network transfer advantages– High throughput and low latency by less hops– Less network equipment (routes, switches) – network is inside the server

• Centralized management of co-located workloads– Optimized resource utilization based on high levels of resource sharing, – Same arrangements for security, process monitoring, backup and disaster recovery, etc.

Not available on x86servers

Spare cores for transparent failoverRAIM subsystem to eliminate failuresBuilt-in bottom to top security

• Achieve scale and availability with elastic capacity • Live Guest Relocation via z/VM SSI and KVM • IBM GDPS® for near-continuous availability• IBM Spectrum Scale® for advance clustering

technology

Quality of Service - Resiliency and Security

Error Prevention • Hardware and firmware designed to protect against outages• Built-in redundancy eliminates single points of failure• Extensive testing and failure analysis at every level

Error Detectionand Correction

• Error detection embedded in components• Built-in automated diagnostics; problem determination and isolation• Non-disruptive installation, upgrades and maintenance avoids outages

Error Recovery • Automated failover to speed recovery and to minimize system impact• Business continuity and disaster recovery solutions – IBM GDPS, z/VM SSI,

IBM Spectrum Scale™, HiperDispatch, Call Home, etc.

© 2021 IBM Corporation

Openness and Compatibility IBM Z servers are fully supported for open source components, ranging from the Linux operating system, KVM hypervisor offered by Linux distribution partners, container technologies, next-generation app development, through application runtime layers.

Building new cloud-native applications and modernizing existing applications to support cloud environments need to be done in an open, portable manner—built once and deployed anywhere—that helps clients improve time to value.

Red Hat OpenShift Container Platform for IBM Z brings together the core open source technologies of Linux, containers and Kubernetes, adds other open source capabilities such developer tools and a registry, and hardens, tests and optimizes the software for enterprise production use.

With IBM Cloud Paks, developers, data managers and administrators have an open environment to quickly build new cloud-native applications, modernize and extend existing applications, and deploy middleware in a consistent manner across multiple clouds. The open Linux environment on IBM Z supports additional container technologies and DevOps-related tooling enterprise-level support for Java™, Node.js, and other runtime environments. Linux on IBM Z can run all kinds of open source software application.

Foundation for Enterprise Hybrid CloudLinux on IBM Z can provide the fastest time to value and most sure-footed way to modernize your applications and transform your infrastructure into an enterprise-grade hybrid cloud approach.

Economic Advantages

IBM Z technology allows for• On-chip accelerated encryption and accelerated compression• High resilience with error prevention–detection–recovery,

specific processors for RAS, and reliable memory (RAIM)• High performance and throughput with large caches, SMT, SIMD,

HiperSockets®, Shared Memory Communication, specific processors for I/O

• Immense capacity, up to 190 cores with 5.2 GHz and up to 40 TB memory on z15 enabling high workload density

• High resource utilization helps to save cost per workload

Cost advantages can be achieved in• Operational management• Security and business continuity• Software acquisition and licenses• Flexibility of configuration• Floor space and energy• Maintenance effort• Furthermore, the costs of using public cloud services are often

underestimated and unpredictable, while the costs running cloud services on IBM Z are almost always predictable.

Adding IFLs to an IBM Z means low incremental costs,and a more efficient and

sustainable infrastructure.

© Copyright IBM Corporation 2021IBM, IBM logo, IBM Cloud Pak, IBM Z, CICS, Db2, GDPS, Spectrum Scale, WebSphere, z15, z/OS, z/VM and z/VSE are trademarks or registered trademarksofInternationalBusinessMachines CorporationintheUnitedStates,othercountries, orboth.Java and all Java-based trademarks and logos are trademarks or registered trademarks of Oracle and/or its affiliates.The registered trademark Linux® is used pursuant to a sublicense from the Linux Foundation, the exclusive licensee of Linus Torvalds, owner of the mark on a worldwide basis. Microsoft, Windows, Windows NT, and the Windows logo are trademarks of Microsoft Corporation in the United States, other countries, or both.Red Hat®, JBoss®, OpenShift®, Fedora®, Hibernate®, Ansible®, CloudForms®, RHCA®, RHCE®, RHCSA®, Ceph®, and Gluster® are trademarks or registered trademarks of Red Hat, Inc. or its subsidiaries in the United States and other countries.All statements regarding IBM’s future direction and intent are subject to change or withdrawal without notice, and represent goals and objectives only. This information is provided “as is” without warranty of any kind, express or implied, and is based on IBM’s current product plans and strategy, which are subject to change by IBM without notice. IBM shall not be responsible for any damages arising out of the use of, or otherwise related to, this document. Nothing contained in this document is intended to, nor shall have the effect of, creating any warranties or representations from IBM (or its suppliers or licensors), or altering the terms and conditions of the applicable license agreement governing the use of IBM software.

ZSP03194-USEN-15

On September 15, 2020, IBM celebrated twenty years of Linux on IBM Z. From the beginning, IBM Z has led the industry in embracing Linux and Open Source. In 2015, we introduced IBM LinuxONE, the best and most robust Linux only enterprise computing platform. In 2019, IBM acquired Red Hat and brought OpenShift®

support to IBM Z.

Linux adoption on IBM Z is showing incredible, exponential growth due to innovation and the optimization of our Linux implementation to leverage the strengths and capabilities of the outstanding IBM Z technology. If your Linux application is mission-critical to your business, you should run it on Linux for IBM Z.

© 2021 IBM Corporation

To learn more: ibm.com/products/z15ibm.com/it-infrastructure/z/linux