Cryptographic Token Interface Standard

PKCS#11


Key derivation by data encryption - DES & AES


Sections

Mechanism Parameters
Mechanism Description

Detailed Description

These mechanisms allow derivation of keys using the result of an encryption operation as the key value. They are for use with the C_DeriveKey function.

 
Functions
           
Mechanism
Encrypt
&
Decrypt
Sign
&
Verify
SR
&
VR1
Digest
Gen.
Key/
Key
Pair
Wrap
&
Unwrap
Derive
CKM_DES_ECB_ENCRYPT_DATA            
X
CKM_DES_CBC_ENCRYPT_DATA            
X
CKM_DES3_ECB_ENCRYPT_DATA            
X
CKM_DES3_CBC_ENCRYPT_DATA            
X
CKM_AES_ECB_ENCRYPT_DATA            
X
CKM_AES_CBC_ENCRYPT_DATA            
X

Mechanisms:

CKM_DES_ECB_ENCRYPT_DATA
CKM_DES_CBC_ENCRYPT_DATA
CKM_DES3_ECB_ENCRYPT_DATA
CKM_DES3_CBC_ENCRYPT_DATA
CKM_AES_ECB_ENCRYPT_DATA
CKM_AES_CBC_ENCRYPT_DATA

typedef struct CK_DES_CBC_ENCRYPT_DATA_PARAMS {
CK_BYTE iv[8];
CK_BYTE_PTR pData;
CK_ULONG length;
} CK_DES_CBC_ENCRYPT_DATA_PARAMS;
typedef CK_DES_CBC_ENCRYPT_DATA_PARAMS * CK_DES_CBC_ENCRYPT_DATA_PARAMS_PTR;

typedef struct CK_AES_CBC_ENCRYPT_DATA_PARAMS {
CK_BYTE iv[16];
CK_BYTE_PTR pData;
CK_ULONG length;
} CK_AES_CBC_ENCRYPT_DATA_PARAMS;


RSA Security Inc. Public-Key Cryptography Standards - PKCS#11 - v230