KI_KeypairToken
KI_ExtendedToken

KI_Token

KI_Token

Purpose:

This KI allows you to specify a hardware-based token form of a key, which may be

either a symmetric key or a public/private key pair. Also seeand for other key info types with token forms.

Type of information this allows you to use:

hardware-based token forms of symmetric keys and public/private key pairs.

Format of info supplied to B_SetKeyInfo:

pointer to a KI_TOKEN_INFO structure:

typedef struct {

 

ITEM manufacturerId;

/* tag used to differentiate */

 

/* different hardware tokens */

ITEM internalKey;

/* OEM-supplied key handle */

} KI_TOKEN_INFO;

 

 

 

Format of info returned by B_GetKeyInfo:

pointer to a KI_TOKEN_INFO structure (see above).

Can get this info type if key object already has:

a key object of the appropriate type, for example, an RSA key pair for RSA operations or a DES key for DES operations. Hardware that uses key tokens must be present.

Notes:

Can only be used in conjunction with a hardware implementation; in particular, KI_Token can only be used if you have called B_CreateSessionChooser for your application.

2 8 8

R S A B S A F E C r y p t o - C L i b r a r y R e f e r e n c e M a n u a l

Page 298
Image 298
RSA Security 5 manual KIToken, Pointer to a Kitokeninfo structure see above