Support User Manuals

IBM 2 Computer Hardware User Manual

Open as PDF

of 508

Key_Encryption_Translate CCA Release 2.54

|

Format

| CSNBKET

| return_code| Output| Integer

| reason_code| Output| Integer

| exit_data_length| In/Output| Integer

| exit_data| In/Output| String| exit_data_length bytes

| rule_array_count| Input| Integer| one

| rule_array| Input| String

| array

| rule_array_count * 8 bytes

| kek_key_identifier_length| Input| Integer| 64

| kek_key_identifier| In/Output| String| kek_key_identifier_length

| bytes

| key_in_length| Input| Integer| 16 or 64

| key_in| Input| String| key_in_length bytes

| key_out_length| In/Output| Integer| 16 or 64

| key_out| Output| String| key_out_length bytes

| Parameters

| For the definitions of the return_code, reason_code, exit_data_length, and exit_data

| parameters, see “Parameters Common to All Verbs” on page 1-11.

| rule_array_count

| The rule_array_count parameter is a pointer to an integer variable containing

| the number of elements in the rule_array variable. This value must be one for

| this verb.

| rule_array

| The rule_array parameter is a pointer to a string variable containing an array of

| keywords. The keywords are eight bytes in length, and must be left-justified

| and padded on the right with space characters. The rule_array keywords are

| shown below:

| kek_identifier_length

| The kek_identifier_length parameter is a pointer to an integer variable

| containing a value of 64, the length of a CCA DES key token.

| kek_identifier

| The kek_identifier parameter is a pointer to a string variable containing the

| key-encrypting key key-token or key label of a key-token record.

| key_in_length

| The key_in_length parameter points to an integer variable valued to 16 for the

| CBCTOECB translation or valued to 64 for the ECBTOCBC translation.

| key_in

| The key_in parameter points to a string variable containing either a CCA

| external key-token or a 16-byte CBC-encrypted key.

| Keyword| Meaning

| Key translation method (one required)

| CBCTOECB| This keyword specifies decryption of a 16-byte string and CCA

| key-encryption of the resulting clear (key) value as an external

| CCA DATA key.

| ECBTOCBC| This keyword specifies decryption of a CCA DATA key and

| CBC encryption of the resulting clear key.

8-50 IBM 4758 CCA Basic Services, Release 2.54, February 2005

previous next