CKM_EXTRACT_KEY_FROM_KEY

**WARNING**   This mechanism contains vulnerabilities that could compromise security. It has been disabled in the factory settings for new HSMs. To enable it, the Weak PKCS#11 Mechanisms flag must be set. See "Weak PKCS#11 Mechanisms" in SafeNet ProtectToolkit-C Administration Guide for more information.

Supported Operations

Encrypt and Decrypt No
Sign and Verify No
SignRecover and VerifyRecover No
Digest No
Generate Key/Key-Pair No
Wrap and Unwrap No
Derive Yes
Available in FIPS Mode No

Key Size Range and Parameters

Minimum 0
Maximum None
Parameter CK_EXTRACT_PARAMS

Description

For a full description of this mechanism, refer to the PKCS#11 version 2.20 documentation from RSA Laboratories.

Return to SafeNet ProtectToolkit-C Mechanisms


Customer Support Portal

SafeNet ProtectToolkit 5.9 Product Documentation  06 January 2020  Copyright 2009-2020 Thales. All rights reserved.