1. Manuals
  2. Brands
  3. Sansec Manuals
  4. Security System
  5. HSM
  6. User manual

Sansec HSM User Manual

Cryptographic device
Hide thumbs Also See for HSM:
1
2
3
4
5
6
7
8
9
Table of Contents

Advertisement

Quick Links

Download this manual See also: User Manual
SANSEC HSM
User Manual
Version 2.1
Beijing Sansec Technology Development Co.,Ltd.
July 2016

Advertisement

Table of Contents
loading

Related Manuals for Sansec HSM

Summary of Contents for Sansec HSM

  • Page 1 SANSEC HSM User Manual Version 2.1 Beijing Sansec Technology Development Co.,Ltd. July 2016...

  • Page 2: Product Overview

    1. Product Overview Sansec HSM is a special device developed and designed by Beijing Sansec Technology Development Co.,Ltd. (hereinafter referred to as Sansec), combined with the characteristics of domestic and foreign financial business applications. It’s mainly used for the host application layer to encrypt and decrypt data, verify message source correctness and do key management etc.
  • Page 3 The HSM supports sensitive data and key stored in the user storage area or key storage area, and also supports ciphered key stored in the local host. The key in the device is stored in cipher-text way.
  • Page 4 Pay related standards, and also compatible with the RACAL command set. We extend the RACAL command set, for supporting the SM cryptographic algorithms. Sansec HSM also provides a rich API interfaces, such as the API compatible with the 《Cryptographic device application interface specification》’s requirements, and also supports PKCS#11, JCE and CSP and other international standard interface.

  • Page 5: Main Functions

    3. Technical Specifications 3.1. Main functions Encryption / decryption for all kinds of application layer data Message integrity protection (MAC calculation and verification) Protection of transaction validity (TAC calculation and verification) Protection of personal PIN code (PINBLOCK encryption, conversion, verification) VISA PIN and Card Verification Key Encryption, derivation and translation, etc.

  • Page 6: Device Management

    3.4. Algorithm supported Symmetric algorithm: DES and Triple DES (key lengths 112 bit, 168 bit),AES (key lengths 128 bit, 192 bit, 256 bit),SM4(key lengths 128 bit) Asymmetric algorithm: RSA (key lengths up to 2048 bit),SM2(key lengths 256 bit) Abstract algorithm: SHA-1, SHA-224, SHA-256, SHA-384, SHA-512, ISO-10118- 2,SM3 3.5.

  • Page 7: Communication Protocol

    Agricultural Bank of China During the domestic cryptographic algorithm transformation project of China Agricultural Bank, Sansec HSM is applied in the key management system in the card issuing process and the front-system in the ATM transaction. It provides key generation, data encryption and decryption of national SM algorithms and...
  • Page 8 CA root certificate, certificate requirement management, providing IC card key, certificate data, etc. Sansec HSM is mainly used to provide IC card key pair and symmetric key derivation for data preparation system.

Table of Contents