|
Home > |
|---|
Set the size of the packet replay window for an STC link. This value specifies the number of packets in the window of sequenced packets that are tracked to provide anti-replay protection.
You must be logged in as the HSM SO to use this command.
All packets sent over the STC link are sequenced and tracked. This allows the receiver to reject old or duplicate packets, thus preventing an attacker from attempting to insert or replay packets on the link. STC employs a sliding window for replay prevention. The receiver remembers which packets it has received within the specified window, and rejects any packets that have already been received or that are older than the oldest packet in the window. Some flexibility is allowed in accepting packets ahead of the sequence window, as valid packets in a short range ahead of the window cause the window to slide forward.
Note: Each STC packet corresponds to a single command. That is, each command sent to the HSM is encapsulated within a single STC packet.
stc replaywindow set -partition <partition_name> -size <number_of_packets>
| Parameter | Shortcut | Description |
|---|---|---|
| -partition <partition_name> | -p <partition_name> | Specifies the name of the partition. |
| -size <number_of_packets> | -s <number_of_packets> |
Specifies the number of packets (commands) in the replay window. Range:100-1000 Default:120 |
lunash:> stc replaywindow set -par mapleleafs -size 500
Successfully changed the size of the replay window for partition mapleleafs to 500 commands.