HP UX Security Products and Features Software manual Extensibility Functions

Common Data Security Architecture (CDSA) White Paper

Cryptography Service Provider (CSP) API

Accepts as input a login password and logs the user into the CSP. CSPs are not required to support a login model. If a login model is supported, the CSP may request additional passwords at any time during the period of service. The HP-UX bundled CSP supports logins.

CSP_Logout ()

The caller is logged out of the current login session with the designated CSP.

CSP_ChangeLoginPassword ()

Accepts as input a handle to a CSP, the callers old login password for that CSP, and the callers new login password. The old password is replaced with the new password. The callers current login is terminated and another login session is created using the new password.

Extensibility Functions

CSP_PassThrough ()

Performs the CSP module-specific function indicated by the operation ID. The operation ID specifies an operation which the CSP has exported for use by an application or module. Such operations are specific to the CSP module. The operation IDs supported by the HP-UX bundled CSP and the examples of how to use them are found in Appendix C, “Code Examples.”

Supported Functions and Algorithms

The HP Praesidium Worldwide Importable CSP supports the following functions and algorithms:

•Random Number Generation Algorithm ID:

—CSSM_ALGID_SHARandom

•Message Digest

Algorithm IDs:

—CSSM_ALGID_MD5

—CSSM_ALGID_SHA1

•Message Authentication Code Algorithm IDs:

—CSSM_ALGID_MD5

—CSSM_ALGID_SHA1

•Symmetric Key Generation