Support User Manuals

IBM 2 Computer Hardware User Manual

Open as PDF

of 508

CCA Release 2.54

Figure 5-4 on page 5-9 shows the key-type, key subtype, and key-usage keywords

that can be combined in the Control_Vector_Generate verb and the

Key_Token_Build verb to build a control vector. The left column lists the key types,

the middle column lists the subtype keywords, and the right column lists the

key-usage keywords that further define a control vector. Figure 5-5 on page 5-10

describes the control-vector-usage keywords.

For information about the control vector bits, see Appendix C, “CCA Control-Vector

Definitions and Key Encryption.”

Figure 5-3 (Page 1 of 2). Key Types and Verb Usage

Key Type Usable with Verbs

Cipher Class (Data Operation Keys)

These keys are used to cipher text. In operational form and in external form, these keys

are associated with a control vector.

CIPHER Encipher, Decipher

ENCIPHER Encipher

DECIPHER Decipher

MAC Class (Data Operation Keys)

These keys are used to generate and verify a message-authentication code (MAC). In

operational form and in external form, these keys are associated with a control vector.

MAC MAC_Generate, MAC_Verify

MACVER MAC_Verify

DATA Class (Data Operation Keys)

These keys are used to cipher text and to produce and verify message-authentication

codes. In operational form, these keys are always associated with a control vector. In

external form, the DATA key-type keys are not usually associated with a control vector.

DATA Encipher, Decipher, MAC_Generate, MAC_Verify

DATAC Encipher, Decipher

DATAM MAC_Generate, MAC_Verify

DATAMV MAC_Verify

Secure Messaging Class (Data Operation Keys)

These keys are used to encrypt keys or PINs. They are double-length keys. In

operational form and in external form, these keys are associated with a control vector.

SECMSG Diversified_Key_Generate

Note: This key-type is added in release 2.30 in

anticipation of additional verbs that employ the key

type in a future release.

Key-Encrypting-Key Class

These keys are used to cipher other keys. They are double-length keys. In operational

form and in external form, these keys are associated with a control vector.

EXPORTER Data_Key_Export, Key_Export, Key_Generate,

Key_Translate, Control_Vector_Translate

IMPORTER Data_Key_Import, Key_Import, Key_Generate,

Key_Translate, Control_Vector_Translate,

Secure_Key_Import

Chapter 5. DES Key-Management 5-7

previous next