Filter
Top Products
CCA Release 2.54
Authentication Data for Passphrase Authentication: For passphrase
authentication, the mechanism data field contains the 20-byte SHA-1 hash of the
user's passphrase. The hash is computed in the host, where it is used to construct
the profile that is downloaded to the Coprocessor.
Figure B-39 (Page 2 of 2). Authentication Data for Each Authentication Mechanism
Field name Length
(bytes)
Description
Mechanism
data
variable This field contains the data needed to perform the
authentication. The size, content, and complexity of this data
will vary according to the authentication mechanism. For
example, the content could be as simple as a password that
is compared to one entered by the user, or it could be as
complex as a set of sophisticated biometric reference data,
or a public key certificate.
Examples of the Data Structures
Passphrase authentication data
Figure B-40 shows the contents of a sample authentication mechanism data
structure for a passphrase.
2 1 1 8 7 ce 6 1 8 fb f5 . ..............
c4 84 75 5f ba 59 6b ca 4a 9d ca 8 fb 52 9e e2 ..u_.Yk.J....R..
45 41 EA
Figure B-40. Passphrase Authentication Data Structure
This data breaks down into the following fields.
00 20 The length of the authentication mechanism data, excluding the length
field itself. (32 bytes)
00 01 The mechanism identifier, for Passphrase Authentication Data.
01 80 The mechanism strength. Hex 0180, or decimal 384.
07 CE The year of the passphrase expiration date. Hex 07CE, or decimal
1998.
06 01 The month and day of the passphrase expiration date. This represents
June 1.
80 00 00 00 The mechanism attributes. The Renewable bit is set.
FB F5 C4 84 75 5F BA 59 6B CA 4A 9D CA 08 FB 52 9E E2 45 41 The
authentication data. This 20-byte value is the SHA-1 hash of the user's
passphrase. In this case, the passphrase is
This is my passphrase.
User Profile
Figure B-41 on page B-37 shows the contents of an entire user profile, containing
the passphrase data shown above.
B-36 IBM 4758 CCA Basic Services, Release 2.54, February 2005