EasyManua.ls Logo

Thales payShield 10K - Encrypt Clear Component (EC)

Thales payShield 10K
470 pages
Save Page as PDF
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
payShield 10K Installation and User Guide
©Thales Group
Page 364
All Rights Reserved
Encrypt Clear Component (EC)
Variant
Key Block
Online
Offline
Secure
Authorization: Required
Activity: component.{key}.console
Command:
EC
Function:
To encrypt a clear text component and display the result at the console.
If the component does not have odd parity, odd parity will be forced before
encryption by the selected LMK.
Variant LMK
Key Block LMK
Authorization:
The HSM must be in the Authorized
State, or the activity
component.{key}.console must be
authorized, where 'key' is the key
type code of the component being
encrypted.
The HSM must be in the Authorized
State, or the activity
component.{key}.console must be
authorized, where 'key' is the key
usage code of the component being
encrypted.
Inputs:
LMK Identifier: 00-99.
Key Type: See the Key Type
Table in the Host Programmer's
Manual.
Key Scheme.
Clear Component: 16/32/48 hex
digits.
LMK Identifier: 00-99.
Component Algorithm (if AES LMK):
3DES or AES
Component Length:
Single/Double/Triple length DES
key or (if AES LMK) 128/192/256-bit
AES key.
Key Scheme.
Key Usage: See the Key Usage
Table in the Host Programmer's
Manual.
Mode of Use: See the Mode of Use
Table in the Host Programmer's
Manual.
Component Number: 1-9.
Exportability: See the Exportability
Table in the Host Programmer's
Manual.
Optional Block data.
Clear Component: 16/32/48 hex
digits.
Outputs:
Component encrypted under an
appropriate variant of the selected
LMK.
Component check value.
Key Block containing the
component encrypted under the
selected LMK.
Component check value.
Errors:
Invalid LMK identifier - no LMK loaded or entered identifier out of range.
Data invalid; please re-enter - the input data does not contain 16 or 32 or
48 hexadecimal characters. Re-enter the correct number of hexadecimal
characters.
Invalid key type; re-enter - the key type is invalid. See the Key Type Table
in the Host Programmer's Manual.
Invalid key scheme - an invalid key scheme is entered.
Command only allowed from Authorized - the HSM is not authorized to
perform this operation.
Internal failure 12: function aborted - the contents of LMK storage have
been corrupted or erased. Do not continue. Inform the Security
Department.

Table of Contents

Related product manuals