hsm stc rekeythreshold set
Set the rekey threshold for the symmetric key used to encrypt data on the STC admin channel. The STC admin channel is local to the appliance, and is used to transmit data between the local services and applications running on the appliance (such as LunaSH, NTLS, and the STC service) and the HSM SO partition.
NOTE The STC admin channel is configurable using Luna Network HSM appliance software and Luna HSM firmware 7.4.x and earlier. This feature is not available in Luna Network HSM 7.7 and newer.
The symmetric key is used for the number of times specified by the threshold value, after which it is regenerated and the counter is reset to 0. Each command sent to the HSM over the HSM STC link uses one life.
User Privileges
Users with the following privileges can perform this command:
>Admin
>Operator
Syntax
hsm stc rekeythreshold set -value <threshold>
Argument(s) | Shortcut | Description |
---|---|---|
-value <key_life> | -v |
An integer that specifies the key life for the STC symmetric key, in millions of messages. Range: 0 - 4000 Default: 400 |
Example
lunash:>hsm stc rekeythreshold set -value 500 Successfully changed the rekey threshold for HSM to 500 million commands. Command Result : 0 (Success)