Home >

stc replaywindow show

Display the size of the packet replay window for an STC link. This value specifies the number of packets in the window of sequenced packets that are tracked to provide anti-replay protection.

You must be logged in as the HSM SO to use this command.

About the Replay Window

All packets sent over the STC link are sequenced and tracked. This allows the receiver to reject old or duplicate packets, thus preventing an attacker from attempting to insert or replay packets on the link. STC employs a sliding window for replay prevention. The receiver remembers which packets it has received within the specified window, and rejects any packets that have already been received or that are older than the oldest packet in the window. Some flexibility is allowed in accepting packets ahead of the sequence window, as valid packets in a short range ahead of the window cause the window to slide forward.

Note:  Each STC packet corresponds to a single command. That is, each command sent to the HSM is encapsulated within a single STC packet.

Syntax

stc replaywindow show -partition <partition_name>

Parameter Shortcut Description
-partition <partition_name> -p <partition_name> Specifies the name of the partition for which you want to display the STC replay window.

Example

lunash:> stc replaywindow show -par mapleleafs
 
The current replay window size for partition mapleleafs is 500 commands.