IBM 2 Computer Hardware User Manual


  Open as PDF
of 508
 
CCA Release 2.54
Figure B-10 (Page 1 of 2). Private Key, 2048-Bit Chinese-Remainder Format
Offset
(Bytes)
Length
(Bytes)
Description
000 001 X'05' Section identifier, RSA private key, CRT (RSA-OPT) format. This
section type is created by the IBM 4758 Version 1 CCA Support Program.
001 001 The version number (X'00')
002 002 Length of the RSA private-key section, 76 +ppp +qqq +rrr +sss +ttt +uuu
+xxx +nnn
004 020 SHA-1 hash value of the private-key subsection cleartext, offset 28 to the
end of the modulus
024 002 Length in bytes of the optionally encrypted secure subsection, or X'0000' if
the subsection is not encrypted
026 002 Master key verification pattern in an internal key-token, else X'0000'
028 001 Key format and security
X'40' Unencrypted RSA private-key subsection identifier, Chinese remainder
form
X'42' Encrypted RSA private-key subsection identifier, Chinese remainder
form
029 001 Reserved, binary zero
030 020 SHA-1 hash of the optional key-name section; if there is no name section,
then 20 bytes of X'00'
050 001 Key usage flag bits
The high-order bit indicates permitted key usage in the decryption of
symmetric keys.
X'00' Only signature generation (SIG-ONLY)
X'C0' Only key unwrapping (KM-ONLY)
X'80' Both signature generation and key unwrapping (KEY-MGMT).
All other bits, reserved, B'0'
051 001 Reserved, binary zero
052 Start of the optionally encrypted subsection.
Private key encryption:
External token: EDE2 process using the double-length transport key
Internal token: EDE3 process using the asymmetric master key.
See “Triple-DES Ciphering Algorithms” on page D-10.
052 008 Random number, confounder
060 002 Length of prime number, p, in bytes: ppp
062 002 Length of prime number, q, in bytes: qqq
064 002 Length of d
p
, in bytes: rrr
066 002 Length of d
q
, in bytes: sss
068 002 Length of A
p
, in bytes: ttt
070 002 Length of A
q
, in bytes: uuu
072 002 Length of modulus, n., in bytes: nnn
074 002 Length of padding field, in bytes: xxx
076 ppp Prime number, p
076
+ppp
qqq Prime number, q
Appendix B. Data Structures B-11
 previous next