CKM_AES_KEY_WRAP_PAD
This section provides a summary of CKM_AES_KEY_WRAP_PAD.
Supported operations
Operation | Support |
---|---|
Encrypt and Decrypt | No |
Sign and Verify | No |
SignRecover and VerifyRecover | No |
Digest | No |
Generate Key/Key-Pair | No |
Wrap and Unwrap | Yes |
Derive | No |
FIPS Mode support
Available in FIPS Mode | Restrictions in FIPS Mode |
---|---|
Yes | None |
Key size range (bytes) and parameters
Key size minimum/maximum | Value |
---|---|
Minimum | 16 |
FIPS Minimum | 16 |
Maximum | 32 |
Parameter
Multiple of 8 bytes (optional)
Mechanism description
Refer to the mechanism description that is relevant to the ProtectToolkit version that you are using.
ProtectToolkit 7.2.1 and newer
For a full description of this mechanism, refer to the PKCS#11 version 2.40 documentation from RSA Laboratories.
Compatibility with applications compiled with ProtectToolkit 7.2.0 or older
If an application using CKM_AES_KEY_WRAP_PAD was compiled with the ProtectToolkit SDK of ProtectToolkit 7.2.0 or older, it should be recompiled with the ProtectToolkit SDK of ProtectToolkit 7.2.1 or newer. If the application cannot be changed, then the configuration item ET_PTKC_GENERAL_LEGACY_AESKW should be used. For more information about this configuration item, refer to ET_PTKC_GENERAL_LEGACY_AESKW.
Example:
$ export ET_PTKC_GENERAL_LEGACY_AESKW=YES
ProtectToolkit 7.2.0 and older
For a full description of this mechanism, refer to the PKCS#11 version 2.30 documentation from RSA Laboratories.
Return to ProtectToolkit-C mechanisms.