hsm stc rekeythreshold set

Set the rekey threshold for the symmetric key used to encrypt data on the STC admin channel. The STC admin channel is local to the appliance, and is used to transmit data between the local services and applications running on the appliance (such as LunaSH, NTLS, and the STC service) and the HSM SO partition.

NOTE   The STC admin channel is configurable using Luna Network HSM appliance software and Luna HSM firmware 7.4.x and earlier. This feature is not available in Luna Network HSM 7.7 and newer.

The symmetric key is used for the number of times specified by the threshold value, after which it is regenerated and the counter is reset to 0. Each command sent to the HSM over the HSM STC link uses one life.

User Privileges

Users with the following privileges can perform this command:

>Admin

>Operator

Syntax

hsm stc rekeythreshold set -value <threshold>

Argument(s) Shortcut Description
-value <key_life> -v

An integer that specifies the key life for the STC symmetric key, in millions of messages.

Range: 0 - 4000

Default: 400

Example

lunash:>hsm stc rekeythreshold set -value 500

Successfully changed the rekey threshold for HSM to 500 million commands.


Command Result : 0 (Success)