CKM_AES_CBC_PAD
Usage Notes
Although this convention allows control of the padding on the input buffer it is highly recommended to use CKM_AES_KWP instead.
Summary
| FIPS approved? | Yes |
| Supported functions | Encrypt | Decrypt | Wrap | Unwrap |
| Functions restricted from FIPS use | Cannot wrap |
| Minimum key length (bits) | 128 |
| Minimum key length for FIPS use (bits) | N/A |
| Minimum legacy key length for FIPS use (bits) | 128 |
| Maximum key length (bits) | 256 |
| Block size | 16 |
| Digest size | 0 |
| Key types | AES |
| Algorithms | AES |
| Modes | CBC_PAD |
| Flags | Extractable |
NOTE The flag MPE_NO_WRAP is assigned to several mechanisms, including this one. When the HSM policy “Allow NonFIPS Algorithms” is disabled, mechanisms with the MPE_NO_WRAP flag are not allowed to wrap objects. When the policy is enabled, these mechanisms are allowed to wrap objects.
