CKM_DECODE_X_509
Supported Operations
| Encrypt and Decrypt | No |
| Sign and Verify | No |
| SignRecover and VerifyRecover | No |
| Digest | No |
| Generate Key/Key-Pair | No |
| Wrap and Unwrap | No |
| Derive | Yes |
| Available in FIPS Mode | Yes |
| Restrictions in FIPS Mode | None |
Key Size Range and Parameters
| Minimum | 0 |
| FIPS Minimum | 0 |
| Maximum | None |
| Parameter | None |
Description
This mechanism is used with the C_DeriveKey function to derive a public key object from an X.509 certificate or a PKCS#10 certification request. This mechanism does not perform a certificate validation.
The base key object handle should refer to the X.509 certificate or PKCS#10 certificate request. This mechanism has no parameter.
Return to ProtectToolkit-C Mechanisms
