stc cipher show

List the symmetric encryption cipher algorithms you can use for data encryption on an STC link. If all ciphers are disabled, symmetric encryption is not used on the link.

NOTE   Secure Trusted Channel (STC) changes format for Luna HSM Firmware 7.7.0; LunaSH commands used by the HSM SO for STC are described here for Luna HSM Firmware 7.4.2 and older, and are discontinued for Luna HSM Firmware 7.7.0 and newer.

For Luna HSM Firmware 7.7.0 and newer, only the Partition SO can configure these STC options, using LunaCM (see stcconfig) after the partition is initialized.

You must be logged in as the HSM SO to use this command.

User Privileges

Users with the following privileges can perform this command:

>Admin

>Operator

>Monitor

Syntax

stc cipher show -partition <partition_name>

Argument(s) Shortcut Description
-partition <partition_name>
-p Specifies the partition for which you want to display the available ciphers.

Example

lunash:>stc cipher show -partition partition2

This table lists the ciphers supported for STC links to the partition. Enabled
ciphers are accepted during STC link negotiation with a client. If all ciphers
are disabled, STC links to the partition are not encrypted.

STC Encryption: On

 Cipher ID    Cipher Name                              Enabled
__________________________________________________________________

 1            AES 128 Bit with Cipher Block Chaining   Yes

 2            AES 192 Bit with Cipher Block Chaining   Yes

 3            AES 256 Bit with Cipher Block Chaining   Yes


Command Result : 0 (Success)