Home >

LunaSH Command Reference Guide > LunaSH Commands > hsm > hsm stc rekeythreshold set

hsm stc rekeythreshold set  

Set the rekey threshold for the symmetric key used to encrypt data on the STC admin channel. The STC admin channel is local to the appliance, and is used to transmit data between the local services and applications running on the appliance (such as LunaSH, NTLS, and the STC service) and the HSM SO partition.

The symmetric key is used for the number of times specified by the threshold value, after which it is regenerated and the counter is reset to 0. Each command sent to the HSM over the HSM STC link uses one life.

Syntax

hsm stc rekeythreshold set -partition <partition> -value <key_life>

Parameter Shortcut Description
-value <key_life> -v <key_life>

An integer that specifies the key life for the STC symmetric key, in millions of messages. Each message sent to the HSM over the STC link uses one life.

Range: 0 - 4000

Default: 400

Example

lunash:>hsm stc rekeythreshold set -par mapleleafs -v 500
 
Successfully changed the rekey threshold for HSM to 500 million commands.