Home >

LunaCM Command Reference Guide > LunaCM Commands > stcconfig > stcconfig replaywindowset

stcconfig replaywindowset

Set the size of the packet replay window for an STC link. This value specifies the number of packets in the window of sequenced packets that are tracked to provide anti-replay protection.

This command is available only if the current slot is a PPSO partition.

About the Replay Window

All packets sent over the STC link are sequenced and tracked. This allows the receiver to reject old or duplicate packets, thus preventing an attacker from attempting to insert or replay packets on the link. STC employs a sliding window for replay prevention. The receiver remembers which packets it has received within the specified window, and rejects any packets that have already been received or that are older than the oldest packet in the window. Some flexibility is allowed in accepting packets ahead of the sequence window, as valid packets in a short range ahead of the window cause the window to slide forward.

Note:  Each STC packet corresponds to a single command. That is, each command sent to the HSM is encapsulated within a single STC packet.

Syntax

stcconfig replaywindowset [-slot <slot_id>] -size <number_of_messages>

Parameter Shortcut Description
-slot <slot_id> -s <slot_id>

Specifies the slot containing the partition for which you want to set the size of the replay window.

This parameter is available only if you are logged into the HSM's Admin partition.

-size <number_of_packets> -m <number_of_packets>

Specifies the number of packets in the replay window.

Range: 100-1000

Default: 120

Example

Current slot
lunacm:> stcc rwse -s 500
 
Successfully changed the replay window size for slot 3 to 500 commands.
Specified slot
lunacm:> stcc rws -s 4 -s 500
 
Successfully changed the replay window size for slot 4 to 500 commands.