|
Home > |
|---|
Access the STC-level commands. Use these commands to configure and manage secure trusted channel (STC) partition-client network links.
You must be logged in as the HSM SO to use the stc commands.
stc
activationtimeout set
activationtimeout show
cipher disable
cipher enable
cipher show
client deregister
client list
client register
hmac disable
hmac enable
hmac show
partition export
partition show
rekeythreshold set
rekeythreshold show
replaywindow set
replaywindow show
status
| Parameter | Shortcut | Description |
|---|---|---|
| activationtimeout set | a se | Set the activation timeout for an STC link. See "stc activationtimeout set". |
|
activationtimeout show |
a sh | Display the STC link activation timeout for the specified partition. See "stc activationtimeout show" |
| cipher disable | ci d | Disable the use of a symmetric encryption cipher algorithm for data encryption on an STC link. See "stc cipher disable". |
| cipher enable | ci e | Enable the use of a symmetric encryption cipher algorithm used for data encryption on an STC link. See "stc cipher enable". |
| cipher show | ci s | List the symmetric encryption cipher algorithms you can use for STC data encryption on the specified partition. See "stc cipher show". |
| client deregister | cl d | Deregister a client's STC public key from the specified partition. See "stc client deregister". |
|
client list |
cl l | List the clients registered to the specified partition. See "stc client list". |
|
client register |
cl r | Register a client's STC public key to the specified partition. See "stc client register" |
| hmac disable | h d | Disable the use of an HMAC message digest algorithm for identity verification on an STC link. See "stc hmac disable". |
| hmac enable | h e |
Enable the use of an HMAC message digest algorithm for integrity verification on an STC link. See "stc hmac enable" |
| hmac show | h s |
List the HMAC message digest algorithms you can use for STC message integrity verification on the specified partition. See "stc hmac show" |
| partition export | p e | Export the specified partition's public key to a file. "stc partition export". |
| partition show | p s | Display the public key and serial number for the current partition. See "stc partition show". |
| rekeythreshold set | rek se | Set the key life for the symmetric key used to encrypt data on the STC link for the specified partition. See "stc rekeythreshold set". |
| rekeythreshold show | rek sh | Display the key life for the symmetric key used to encrypt data on the STC link for the specified partition. See "stc rekeythreshold show". |
| replaywindow set | rep se | Set the size of the packet replay window. See "stc replaywindow set" |
| replaywindow show | rep sh | Display the current setting for the size of the packet replay window. See "stc replaywindow show". |