hsm stc rekeythreshold set
Set the rekey threshold for the symmetric key used to encrypt data on the STC admin channel. The STC admin channel is local to the appliance, and is used to transmit data between the local services and applications running on the appliance (such as LunaSH, NTLS, and the STC service) and the HSM SO partition.
The symmetric key is used for the number of times specified by the threshold value, after which it is regenerated and the counter is reset to 0. Each command sent to the HSM over the HSM STC link uses one life.
User Privileges
Users with the following privileges can perform this command:
>Admin
>Operator
Syntax
hsm stc rekeythreshold set -value <key_life>
Argument(s) | Shortcut | Description |
---|---|---|
-value <key_life> | -v |
An integer that specifies the key life for the STC symmetric key, in millions of messages. Each message sent to the HSM over the STC link uses one life. Range: 0 - 4000 Default: 400 |
Example
lunash:>hsm stc rekeythreshold set -value 500
Successfully changed the rekey threshold for HSM to 500 million commands.
Command Result : 0 (Success)