CKM_RSA_PKCS_KEY_PAIR_GEN
This section provides a summary of CKM_RSA_PKCS_KEY_PAIR_GEN.
Supported operations
Operation | Supported |
---|---|
Encrypt and Decrypt | No |
Sign and Verify | No |
SignRecover and VerifyRecover | No |
Digest | No |
Generate Key/Key-Pair | Yes |
Wrap and Unwrap | No |
Derive | No |
FIPS Mode support
Available in FIPS Mode | Restrictions in FIPS Mode |
---|---|
Yes | None |
Key size range (bits) and parameters
Key size minimum/maximum | Value |
---|---|
Minimum | 512 |
FIPS Minimum | 2048 |
Maximum | 4096 |
Parameter
CK_ULONG (optional)
Mechanism description
The mechanism denoted CKM_RSA_PKCS_KEY_PAIR_GEN
is a Key Pair Generation mechanism to create a new RSA key pair of objects using the method described in PKCS#1. It behaves as described in the PKCS#11 version 2.20 documentation, with the following exception:
This ProtectToolkit-C mechanism has an optional parameter of type CK_ULONG
which, if provided, will specify the size in bits of the random public exponent.
Return to ProtectToolkit-C mechanisms.