IBM 2 Computer Hardware User Manual


  Open as PDF
of 508
 
CCA Release 2.54 PKA_Encrypt
PKA_Encrypt (CSNDPKE)
Platform/
Product
OS/2 AIX Win NT/
2000
OS/400
IBM 4758-2/23 X X X X
The PKA_Encrypt verb encrypts (wraps) input data using an RSA public key. The
data that you encrypt may include:
For keys, the encrypted data can be formatted according to RSA DSI PKCS #1
block type 2 format specifications. See “PKCS #1 Formats” on page D-19.
Other data, such as a digital signature, can be RSA-ciphered using the public
key and the ZERO-PAD option. The data that you provide will be padded on
the left with zero bits to the modulus length of the public key. When validating
a digital signature using the ZERO-PAD option, you are responsible for
formatting of the hash and any other required information.
Restrictions
The RSA public-key modulus size (key size) is limited by the Function Control
Vector to accommodate governmental export and import regulations.
A message can be encrypted provided that it is smaller than the public key
modulus.
The ZERO-PAD rule-array keyword is only available starting with Release 2.50.
Format
CSNDPKE
return_code Output Integer
reason_code Output Integer
exit_data_length In/Output Integer
exit_data In/Output String exit_data_length bytes
rule_array_count Input Integer one
rule_array Input String
array
rule_array_count * 8 bytes
clear_source_data_length Input Integer
clear_source_data Input String clear_source_data_length
bytes
data_structure_length In/Output Integer
data_structure Input String data_structure_length bytes
public_key_identifier_length Input Integer
public_key_identifier Input String public_key_identifier_length
bytes
target_data_length In/Output Integer
target_data Output String target_data_length bytes
Parameters
For the definitions of the return_code, reason_code, exit_data_length, and exit_data
parameters, see “Parameters Common to All Verbs” on page 1-11.
rule_array_count
The rule_array_count parameter is a pointer to an integer variable containing
the number of elements in the rule_array variable. The value must be one for
this verb.
Chapter 5. DES Key-Management 5-75
 previous next