The HSM provides Console commands to generate and form Zone Master Keys (ZMKs) by components. These commands are retained for backwards compatibility and have been superceded by GC, EC and FK commands.
To form a ZMK requires at least two components. For security reasons, the components must be encrypted under one of the LMK pairs before the HSM accepts them and forms the ZMK. Therefore the HSM provides facilities to:
· Generate a clear text component and its encrypted form.
· Encrypt a clear text component (for components received from another institution).
· Combine a number of encrypted components.