Generate Key And Write Components To Smartcard (Gs) - Thales payShield 10K Installation And User Manual

Hide thumbs

100

101

page of 470

/ 470
Contents
Table of Contents
Bookmarks

Table of Contents

Generate Key and Write Components to

Smartcard (GS)

Command:

Function:

Generates a key in 2 to 3 component and write the components to

smartcards.

Authorization:

The HSM must be in the Authorized

State, or the activity

component.{key}.console must be

authorized, where 'key' is the key

type code of the key being

generated.

• LMK Identifier: 00-99.

Inputs:

• Key Length: 1 (single), 2 (double),

3 (triple).

• Key Type: See the Key Type

Table in the Host Programmer's

Manual.

• Key Scheme.

• Number of components: 2-3.

• Smartcard PINs. PINs must be

entered within 60 seconds of

being requested.

• Key encrypted under an

Outputs:

appropriate variant of the selected

LMK.

• Key check value.

• Invalid LMK identifier - no LMK loaded or entered identifier out of range.

Errors:

• Invalid PIN; re-enter - a PIN of less than 4 or greater than 8 is entered.

• Smartcard error; command/return: 0003 - invalid PIN is entered.

• Warning - card not blank. Proceed? [Y/N] - the smartcard entered is not

blank.

• Overwrite key component? [Y/N] - the smartcard already contains a key

component. It can be overwritten if desired.

• Device write failed - the component could not be verified.

• Invalid key scheme for key length - the Key scheme is inappropriate for Key

length.

• Invalid key type; re-enter - the key type is invalid. See the Key Type Table in

the Host Programmer's Manual.

©Thales Group

payShield 10K Installation and User Guide

Variant LMK

Variant 

Online 

Offline 

Authorization: Required

Activity: component.{key}.console

Key Block LMK

The HSM must be in the Authorized

State, or the activity

component.{key}.console must be

authorized, where 'key' is the key

usage code of the key being

generated.

• LMK Identifier: 00-99.

• Key Algorithm (if AES LMK): 3DES or

AES

• Key Length: Single/Double/Triple

length DES key or (if AES LMK)

128/192/256-bit AES key.

• Key Scheme.

• Number of components: 2-3.

• Key Usage: See the Key Usage

Table in the Host Programmer's

Manual.

• Mode of Use: See the Mode of Use

Table in the Host Programmer's

Manual.

• Key Version Number: 00-99.

• Exportability: See the Exportability

Table in the Host Programmer's

Manual.

• Optional Block data.

• Smartcard PINs. PINs must be

entered within 60 seconds of being

requested.

• Key Block containing the key

encrypted under the selected LMK.

• Key check value.

Key Block 

Secure 

Page 360

Table of Contents

Chapters

Table of Contents

Need help?

Do you have a question about the payShield 10K and is the answer not in the manual?

This manual is also suitable for:

Pugd0535-006

Generate Key And Write Components To Smartcard (Gs) - Thales payShield 10K Installation And User Manual

Chapters

Need help?

Related Manuals for Thales payShield 10K

Related Products for Thales payShield 10K

This manual is also suitable for:

Table of Contents