CKM_DES3_CMAC_GENERAL
Supported Operations
| Encrypt and Decrypt | No |
| Sign and Verify | Yes |
| SignRecover and VerifyRecover | No |
| Digest | No |
| Generate Key/Key-Pair | No |
| Wrap and Unwrap | No |
| Derive | No |
| Available in FIPS Mode | Yes |
| Restrictions in FIPS Mode | Sign/Verify: A maximum limit of 228 64-bit packets can be processed by a single key. Once this limit is reached, an error (CKR_KEY_NOT_ACTIVE) occurs. |
Key Size Range (bytes) and Parameters
| Minimum | 16 |
| FIPS Minimum | 16 |
| Maximum | 24 |
| Parameter | 8 bytes |
Description
For a full description of this mechanism, refer to the PKCS#11 version 2.20 documentation from RSA Laboratories.
Return to SafeNet ProtectToolkit-C Mechanisms
