Tune security performance
Use the following procedures to tune the performance, without compromising our security settings.
Important: Performance degradation may be experienced on platforms running antivirus software. Performance Degradation may vary between antivirus software vendor and/or features enabled. WebSphere Application Server has no unique dependencies or special requirements when using antivirus software. Contact your antivirus vendor for information on how this impact may be mitigated Enabling security decreases performance. The following tuning parameters provide ways to minimize this performance impact.
(ZOS) While it is not practical to run WAS for z/OS without security enabled, it is possible to perform certain tuning techniques to make the Application Server run better on z/OS. These techniques are documented in detail in Security tuning tips.
Tasks
- (iSeries) Disable security on any application servers that do not need security. We can disable security in the administrative console by clicking Security > Global security and deselecting the Enable administrative security option.
- Fine-tune the Authentication cache timeout value on the Authentication mechanisms and expiration panel in the administrative console. See Global security settings topic.
- Configure the security cache properties. See Authentication cache settings topic.
- Enable the Enable SSL ID tracking option on the Session management panel in the administrative console.
- (iSeries) Improve the performance of Web Services Security by downloading a Java Cryptography Extension (JCE) unlimited jurisdiction policy file that does not have restrictions on cryptography strength. See the information about tuning Web Services Security for v8.0 applications for details.
- Modify the RACF security settings as documented in the Security tuning tips article.
- (iSeries) Read the Secure Sockets Layer performance tips and Tune security configurations topics for more information.
- Read the Tune security configurations article for more information.
Tune Web Services Security for v9.0 applications Session management settings