Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

Thales Logo

All

  • All
back

Key Operations

Generate KMIP Public-Private Key Pair

search

Please Note:

Generate KMIP Public-Private Key Pair

The user can get the group permissions applicable on an existing key through API.

  1. Create an NAEParameterSpec object. Pass the keyname as an argument.

  2. Obtain an instance of KeyPairGenerator. Pass the key type as an argument.

  3. Call the genKeyPair method of the KeyPairGenerator object.

Code sample

This code snippet generates two KMIP keys named myKeyPublic and myKeyPrivate owned by user1 that contain two custom attributes: first_attribute and second_attribute.

KMIPSession session = KMIPSession.getSession(new NAEClientCertificate("ClientCertificatename", "ClientCerticate password".toCharArray()));
CustomAttributes custatts = new CustomAttributes("first_attribute", "abcd");
custatts.addAttribute("second_attribute", "efgh");
// In a KMIP session, the following lines generate key pairs.
NAEParameterSpec spec = new NAEParameterSpec("mykey", true, true, 256, custatts,session);
KeyGenerator keygen = KeyGenerator.getInstance("AES", "IngrianProvider");
keygen.init(spec);
SecretKey aesKey = keygen.generateKey();

KMIP Objects MUST have unique names, so, by default, the KMIP key pairs are assigned with the suffixes Public or Private. Thus, if you generate testKey, the default result would be testKeyPublic and testKeyPrivate. If you do not want to use the default suffixes, configure them in the CADP_for_JAVA.properties file and use these suffix config parameters:

  • KMIP_Private_Suffix

  • KMIP_Public_Suffix

On this page