Common Data Security Architecture (CDSA) White Paper

Cryptography Service Provider (CSP) API

Algorithm IDs, shown with keysize specification in bits:

CSSM_ALGID_CDMF; 64

The effective key size of a 64-bit CDMF key is 40 bits.

CSSM_ALGID_RC2; <=40, in any multiple of 8, between 8 and 40

CSSM_ALGID_RC4; <=40, in any multiple of 8, between 8 and 40

CSSM_ALGID_MD5, unlimited*

CSSM_ALGID_SHA1 unlimited*

*When these keys are used to generate a symmetric context, they are subject to the same length restriction as the algorithm (CSSM_ALGID_CDMF, CSSM_ALGID_RC2, or CSSM_ALGID_RC4) specified for the context.

Asymmetric Key Generation

Algorithm ID, shown with keysize specification:

CSSM_ALGID_RSA; 512, 768, 1024

When these keys are used to generate an asymmetric context, only keys with 512 bits length are allowed for encryption/decryption or for key wrapping/unwrapping operations.

CSSM_ALGID_DSA; 512, 768, 1024

CSSM_ALGID_DH; 512, 768, 1024

Only keys with 512 bits length are allowed for key derivation.

Algorithm ID

Keysize

Modes

CSSM_ALGID_CDMF

64

CSSM_ALGMODE_ECB

 

 

CSSM_ALGMODE_CBC

 

 

CSSM_ALGMODE_CBC_IV8

 

 

CSSM_ALGMODE_CBCPadIV8

CSSM_ALGID_RC2

<=40

CSSM_ALGMODE_ECB

 

 

CSSM_ALGMODE_CBC

 

 

CSSM_ALGMODE_CBC_IV8

 

 

CSSM_ALGMODE_CBCPadIV8

CSSM_ALGID_RC4

<=40

CSSM_ALGMODE_NONE

Padding (specified in bits)

CSSM_PADDING_NONE CSSM_PADDING_NONE CSSM_PADDING_NONE CSSM_PADDING_PKCS5 CSSM_PADDING_NONE CSSM_PADDING_NONE CSSM_PADDING_NONE CSSM_PADDING_PKCS5 CSSM_PADDING_NONE

Chapter 1

31

Page 31
Image 31
HP UX Security Products and Features Software manual Cssmalgidcdmf