|
Command: |
Verify a MAC on a public key, using old LMK pair 36-37, held in key change storage, and calculate a MAC using the new LMK.
|
|
Notes: |
This command requires the optional RSA licence, error code 67 will be returned if the command is not licenced. See: Using the RSA cryptosystem for details of where valid values of the common parameters can be found. |
|
Field |
Length & Type |
Details | |
|
COMMAND MESSAGE |
|||
|
Message header |
m A |
(Subsequently returned to the Host unchanged). |
|
|
Command code |
2 A |
Value EU. |
|
|
MAC |
4 B |
MAC on the public key and authentication data, calculated using old LMK pair 36-37. |
|
|
Public key |
n B |
Public key, DER encoded in ASN.1 format (sequence of modulus, exponent). |
|
|
Authentication data |
n B |
Optional. Additional data to be included in the MAC calculation (must not include “;”). |
|
|
End message delimiter |
1 C |
Optional. Must be present if a message trailer is present. Value X’19. |
|
|
Message trailer |
n A |
Optional. Maximum length 32 characters. |
|
|
RESPONSE MESSAGE |
|||
|
Message header |
m A |
Returned to the Host unchanged. |
|
|
Response code |
2 A |
Value EV. |
|
|
Error code |
2 N |
00 : No error 01 : MAC verification failure 04 : Public key does not conform to encoding rules 13 : LMK error; report to supervisor 15 : Error in input data |
|
|
MAC |
4 B |
MAC on the public key and authentication data, calculated using new LMK pair 36-37. |
|
|
End message delimiter |
1 C |
Present only if present in the command message. Value X’19. |
|
|
Message trailer |
n A |
Present only if present in the command message. Maximum length 32 characters. |
|
|
|
|
|
|
Example
Command Request:
EU<6AD36765><30470240AE213EBDFE272616058114CA5D6E8DDD2F976EF0C6D6F6ADE0204E916CE
0B5C704A1A9F1F631F578D7B87D1981951BB99A572400AC43BB3AF8C2A4068A0052250203010001>
Command Response:
EV00<530548CE>