Support User Manuals

IBM 2 Computer Hardware User Manual

Open as PDF

of 508

CCA Release 2.54 PKA_Symmetric_Key_Import

Restrictions

1. Private key key-usage controls can prevent use of specific private keys in this

verb. See page 3-7. A key-usage flag bit (see offset 050 in the private-key

section) must be on to permit use of the private key in the decryption of a

symmetric key.

2. The RSA private-key modulus size (key size) is limited by the Function Control

Vector to accommodate potential governmental export and import regulations.

3. Under PKA92, the EID enciphered with a key-encrypting key cannot be the

same as the EID of the importing cryptographic engine.

4. Other IBM implementations of this verb may not support:

 Key types other than a default DATA control-vector

 Use of a key label with the target key identifier.

Check the product-specific literature for restrictions.

| 5. Beginning with Release 2.53, a private key with the CLONE attribute is rejected

| by this verb with return code 8, reason code 64 (decimal).

Format

CSNDSYI

return_code Output Integer

reason_code Output Integer

exit_data_length In/Output Integer

exit_data In/Output String exit_data_length bytes

rule_array_count Input Integer one

rule_array Input String

array

rule_array_count * 8 bytes

RSA_enciphered_key_length Input Integer

RSA_enciphered_key Input String RSA_enciphered_key_length

RSA_private_key_identifier_length Input Integer

RSA_private_key_identifier Input String RSA_private_key_identifier_length

bytes

target_key_identifier_length In/Output Integer

target_key_identifier In/Output String target_key_identifier_length

Parameters

For the definitions of the return_code, reason_code, exit_data_length, and exit_data

parameters, see “Parameters Common to All Verbs” on page 1-11.

rule_array_count

The rule_array_count parameter is a pointer to an integer variable containing

the number of elements in the rule_array variable. The value must be one for

this verb.

rule_array

The rule_array parameter is a pointer to a string variable containing an array of

keywords. The keywords are eight bytes in length, and must be left-justified

and padded on the right with space characters. The rule_array keywords are

shown below:

Chapter 5. DES Key-Management 5-87

previous next