IBM 2 Computer Hardware User Manual


  Open as PDF
of 508
 
PKA_Public_Key_Register CCA Release 2.54
PKA_Public_Key_Register (CSNDPKR)
Platform/
Product
OS/2 AIX Win NT/
2000
OS/400
IBM 4758-2/23 X X X X
The PKA_Public_Key_Register verb is used to register a public key in the
cryptographic engine. Keywords in the rule array designate the subsequent
permissible uses of the registered public key.
The public key offered for registration must be contained in a token that contains a
certificate section. The public key value contained in the certificate will be the key
that is registered. A pre-registered hash value over the certificate section,
exclusive of the certificate signature bits, is used to independently validate the
offered key; see the PKA_Public_Key_Hash_Register verb and “RSA PKA
Key-Tokens” on page B-6.
Restrictions
None
Format
CSNDPKR
return_code Output Integer
reason_code Output Integer
exit_data_length In/Output Integer
exit_data In/Output String exit_data_length bytes
rule_array_count Input Integer zero or one
rule_array Input String
array
rule_array_count * 8 bytes
public_key_name Input String 64 bytes
public_key_certificate_length Input Integer
public_key_certificate Input String certificate_length bytes
Parameters
For the definitions of the return_code, reason_code, exit_data_length, and exit_data
parameters, see “Parameters Common to All Verbs” on page 1-11.
rule_array_count
The rule_array_count parameter is a pointer to an integer variable containing
the number of elements in the rule_array variable. The value must be zero or
one for this verb.
rule_array
The rule_array parameter is a pointer to a string variable containing an array of
keywords. The keywords are eight bytes in length, and must be left-justified
and padded on the right with space characters. The rule_array keywords are
shown below:
Keyword Meaning
Special usage (optional)
CLONE Indicates that the registered public-key can be employed in a
CCA node cloning process provided that this usage was also
asserted when the hash value was registered.
3-28 IBM 4758 CCA Basic Services, Release 2.54, February 2005
 previous next