Filter
Top Products
CCA Release 2.54
Figure B-12 (Page 2 of 2). RSA Private Key, Chinese-Remainder Format with OPK
Offset
(Bytes)
Length
(Bytes)
Description
124 Start of the (optionally) encrypted subsection.
External token:
When offset 028 is X'40', the subsection is not encrypted
When offset 028 is X'42', the subsection is encrypted by the double-length
transport key using the triple-DES CBC process.
Internal token:
When offset 028 is X'08', the subsection is encrypted by the triple-length OPK
using the triple-DES CBC process.
See “Triple-DES Ciphering Algorithms” on page D-10.
124 008 Random number, confounder
132 ppp Prime number, p
132
+ppp
qqq Prime number, q
132
+ppp
+qqq
rrr d
p
= d mod(p-1)
132
+ppp
+qqq
+rrr
sss d
q
= d mod(q-1)
132
+ppp
+qqq
+rrr
+sss
uuu U = q
-1
mod(p)
132
+ppp
+qqq
+rrr
+sss
+uuu
xxx X'00' padding of length xxx bytes such that the length from the start of the
confounder at offset 124 to the end of the padding field is a multiple of eight
bytes
End of the optionally encrypted subsection; all of the fields starting with the confounder
field and ending with the variable length pad field are enciphered for key confidentiality
when the key format-and-security flags (offset 28) indicate that the private key is
enciphered.
132
+ppp
+qqq
+rrr
+sss
+uuu
+xxx
nnn Modulus, n. n=pq where p and q are prime and 2
512
<n<2
2048
Note: See “Number Representation in PKA Key-Tokens” on page B-8.
Appendix B. Data Structures B-15