An HSM licence is an electronic file which when loaded into an HSM 8000 unit, determines the features available to the user. The licence is associated with a particular units serial number and is therefore not transferrable between units. The licence will affect such areas as the communication interfaces and the cryptographic algorithms available. It will also determine which of the unit’s commands are active, ie, although all available commands are displayed only those covered by the licence will be active. The range of features and commands will be those specified by the customer at the time of purchase.
The View Revision console command can be executed whatever the state of the HSM. It displays the version of the HSM Application, and the license attributes of the HSM.
Example Offline>VR<Return>
Base release: 2.0a
Revision: 1053-0801
Build Number: 0001
Bootstrap Version: 2.5.7
Kernel Version: 2.17.1
ESS FPGA Version: 2.20.1
HSM Core API Version 2.1.1
HSM Application Version: 4.3.1
HSM COMMs Version: 1.2.11
Build location: 01
Host Configuration: Async, Ethernet, ESCON
Serial Number: A3451001234S
Licence Issue No: 1
Performance: 800 TPS
Base Software: Version 2
Crypto: DES, RSA
Ship Counter: 1
Offline>
It can be seen from the above example that the HSM is operating under the initial licence and is licensed for 800 TPS performance, Version 2 Base Software, DES and RSA Cryptographic algorithms and Asynchronous Ethernet and Escon communication interfaces.
This chapter describes how to physically configure the HSM to work with the Host system. Configuration of the alarms and the security settings can be found in the HSM 8000 Security Operations Manual.
Entry of commands and data at the Console is not case sensitive (i.e., A has the same effect as a). Spaces can be inserted between characters to ease legibility during entry; they are ignored by the HSM. However they cannot be used between command characters (e.g. the LK command cannot be successfully entered as L K).
When entering sensitive (clear text) data, use the Inhibit Echo Back facility to ensure that the HSM does not echo the data to the Console screen. This is set at configuration using the CS (Configure Security) command. Instead of displaying the data, the HSM displays a star for each character entered. Thus:
0123456789ABCDEF
is shown on the screen as:
****************
To exit from a command during data entry, press <Control> and C simultaneously. The HSM responds with:
TERMINATED