Command: ED (Encrypt Decimalisation Table). Can be used in online, offline or secure state.
Function: To encrypt a 16 digit decimalisation table for use with host commands using IBM 3624 PIN Generation & Verification.
HSM State: The HSM must be in Authorised State
Inputs: Decimalisation table. 16 decimal digits that specify the mapping between hexadecimal & decimal numbers.
The HSM by default checks that the decimalisation table contains at least 8 different digits, with no digit repeated more than 4 times. This feature may be disabled using the Configure Security parameter “Enable decimalisation table check”. Disabling of this feature is not recommended
Outputs: Encrypted decimalisation table: 16 Hex characters.
Errors: NOT AUTHORISED. The HSM is not in the authorised state.
DECIMALISATION TABLE INVALID. Decimalisation table not all decimal or does not contain at least 8 different digits with no digit repeated more than 4 times.
MASTER KEY PARITY ERROR. The contents of the HSM storage have been corrupted or erased. Do not continue. Inform the security department.
Example
Online – AUTH> ED <Return>
Enter decimalisation table : 0123456789012345 <Return>
Encrypted decimalisation table: XXXX XXXX XXXX XXXX