Cryptographic Token Interface Standard

PKCS#11


JUNIPER-COUNTER

JUNIPER COUNTER, denoted CKM_JUNIPER_COUNTER, is a mechanism for single- and multiple-part encryption and decryption with JUNIPER in counter mode.

It has a parameter, a 24-byte initialization vector. During an encryption operation, this IV is set to some value generated by the token"in other words, the application cannot specify a particular IV when encrypting. It can, of course, specify a particular IV when decrypting.

Constraints on key types and the length of data are summarized in the following table. For encryption and decryption, the input and output data (parts) may begin at the same location in memory.

Table 99, JUNIPER-COUNTER: Data and Length
Function Key type
Input length
Output length
Comments
C_Encrypt JUNIPER
multiple of 16
same as input length
no final part
C_Decrypt JUNIPER
multiple of 16
same as input length
no final part


RSA Security Inc. Public-Key Cryptography Standards - PKCS#11 - v210