|
Command: |
To form a key from encrypted components. |
|
Notes: |
See Key Type Table to find key type code. The HSM must be in Authorised state. |
|
Field |
Length & Type |
Details |
|
COMMAND MESSAGE |
||
|
Message header |
m A |
(Subsequently returned to the Host unchanged). |
|
Command code |
2 A |
Value A4. |
|
Number of components |
1 N |
2 – 9 Number of components. |
|
Key type |
3 H |
See Key Type Table |
|
Key Scheme (LMK) |
1 A |
Key scheme for encrypting key under LMK. See section “Key Scheme Table”. |
|
Key component 1 |
16H or 1A+32H or 1A+48H |
Encrypted key component 1. |
|
Key component 2 |
16H or |
Encrypted key component 2. |
|
. |
. |
. |
|
. |
. |
. |
|
. |
. |
. |
|
Key component n |
16H or 1A+32H or 1A+48H |
Encrypted key component n. |
|
End message delimiter |
1 C |
Optional. Must be present if a message trailer is present. Value X’19. |
|
Message trailer |
n A |
Optional. Maximum length 32 characters. |
|
RESPONSE MESSAGE |
||
|
Message header |
n A |
Returned to the Host unchanged. |
|
Response code |
2 A |
Value A5. |
|
Error code |
2 N |
00 : No errors 03 : Invalid number of components 10 : Component parity error 12 : No keys loaded in user storage 13 : LMK error : report to supervisor 15 : Error in input data 17 : Not in authorised state 21 : Invalid user storage index |
|
Key (LMK) |
16H or 1A+32H or 1A+48H |
The key encrypted under LMK |
|
Key check value |
6 H |
The key check value |
|
End message delimiter |
1 C |
Present only if present in the command message. Value X’19. |
|
Message trailer |
n A |
Present only if present in the command message. Maximum length 32 characters. |