multitoken
multitoken is a simple demonstration tool that allows you to perform basic cryptographic functions on a Luna HSM. It allows you to specify an operation, and one or more “slots” or HSM Partitions on which to perform that operation. The multitoken utility runs the operations and returns a summary of the results.
NOTE This is a general-purpose tool intended for use across Luna HSM versions. It might reference mechanisms and features that are not available on all Luna products.
Accessing multitoken
The multitoken utility is accessed via the command line.
To access the multitoken utility
1.Open a console window.
2.Go to the Luna HSM Client installation folder/directory:
| Windows | C:\Program Files\SafeNet\LunaClient |
| Linux/Unix | /usr/safenet/lunaclient/bin |
| Client downloaded from Data Protection on Demand | <client_unzip_location> |
3.Launch the multitoken utility:
./multitoken
Syntax
multitoken-mode <mode> {-slots <slot_list> | -nslots <slot_threads>} [options...]
| Argument(s) | Shortcut | Description |
|---|---|---|
| -alarm <secs> | -al | Sound periodic alarm (every <secs> seconds) if error occurs. |
| -applytochild | -atc | Apply the PerKeyAuth settings to any child keys that are created (ie. derived or unwrapped as part of the test). [for PKA] |
| -assigned | -as | Generate keys as assigned (CKA_ASSIGNED=1). [for PKA] |
| -blob <blob_count> | -b | Number of data blobs to be signed during each multisign operation. |
| -curve <curve_num> | -crv | ID number of ECC curve. If user-defined (99), then must specify -parmfile. |
| -delayop <secs> | -do | Delay the operation performed by each thread by the specified number of seconds. Value must be larger than "0". |
| -destroyafter | -da | Destroys created objects on the HSM only after test completes. |
| -destroyafterbulk | -dab | Destroys created objects on the HSM only after test completes using DestroyMultipleObjects. |
| -eciesdata <filename> | -ecd |
ECIES SHIM mode: Specifies the file that contains the plaintext data to use. Non-SHIM ECIES mode: Specifies the file to receive the plaintext data used. See Notes for details on using SHIM and non-SHIM ECIES modes. |
| -eciesenc <filename> | -ece |
ECIES SHIM mode: Specifies the file that contains the encrypted data. Non-SHIM ECIES mode: Specifies the file to receive the encrypted data. See Notes for details on using SHIM and non-SHIM ECIES modes. |
| -ecieskey <filename> | -eck |
ECIES SHIM mode: Specifies the file that contains the DER-encoded private key. Non-SHIM ECIES mode: Specifies the file to receive the DER-encoded private key. See Notes for details on using SHIM and non-SHIM ECIES modes. |
| -eciesscheme | -esch | Encryption scheme to use for ECIES AES modes: 0 = AES_CBC_PAD (default), 1 = AES_CTR. |
| -enddate <YYYYMMDD> | -end | Validity end date for key, in YYYYMMDD format. |
| -force | -f | Avoid prompts for responses. |
| -gcmaad <bytes> | -gad | Specify the length of the AAD data used for GCM/GMAC. The AAD data can not be larger than 1024 bytes. |
| -gcmiv <bits> | -giv |
Specify the length of the IV (in bits) to be used for GCM/GMAC. Valid values: 0,96,128 |
| -haaidhigh <value> | -hah |
Specify the AppID High value. |
| -haaidlow <value> | -hal |
Specify the AppID Low value. |
| -haaidoffset <value> | -hao |
Specify the AppID Low value increment for each thread. |
| -haslot <value> | -has |
Specify the slot id for the secondary. |
| -halogout <value> | -hat |
Specify that the session should be logged out. |
| -haclosesess | -hac |
Specify that the session should be closed. |
| -hacloseappid <value> | -haa |
Specify the AppID that should be closed. |
| -help | -h | Display help information only. |
| -kdfchoice <kdf_index> | -kdf | Select key derivation function - specify choice list index. |
| -kdfscnt <counter_index> | -kds | Select key derivation session counter type - specify choice list index. |
| -kekreplace | -kre | Specifies that a KEK replacement should be requested after the specified number of iterations. This option only works with DES3/AES ECB/CBC tests. It will be ignored for all other test modes. |
| -key <key_size> | -k | Size of key: asymmetric in bits (default = 1024 for RSA, 2048 for DSA). Symmetric in bytes (i.e. 16, 24, 32 for AES/ARIA). |
| -keyauthtype <key_index> | -kat | Specify the type Per Key Authorization test to performed.
[for PKA] 1 = Authorize the key once and use it many times 2 = Authorize the key once, use it once, rescind the key |
| -keyauthdata <data> | -kad | Specify the authorization data to use for the key. [for PKA] |
| -keychoice <key_index> | -kc | Select key type to derive/generate - specify choice list index. |
| -keyderiv <keysize> | -kde | Size of key to derive with (ex. 1024 for X9.42 Diffie Hellman). |
| -kwicv | -kiv | Use external ICV for the key wrap mechanism. |
| -limitedco | -lco | Login as the Limited Crypto Officer (default is Crypto Officer). |
| -logfile <filename> | -l | File for results logging. |
| -mode <mode> | -m | Operating mode. See mode values available below. |
| -multipartsig | -msig | Use multipart signatures. |
| -nodec | -nod | Decryption operation will not be performed. Only symmetric and asymmetric encryption will be performed and measured. |
| -nodestroy | -n | Leaves created objects on the HSM after test completes. |
| -noenc | -noe | Encryption operation will not be performed. Only symmetric and asymmetric decryption will be performed and measured. |
| -nosign | -nos | Sign operation will not be performed. Only verify will be performed and measured. |
| -nounwrap | -nou | Unwrapping operation will not be performed. Only wrapping will be performed and measured. |
| -noverify | -nov | Verify operation will not be performed. Only sign will be performed and measured. |
| -noverifyr | -nvr | Do not verify decryption results. |
| -nowrap | -now | Perform only one wrapping operation. Only unwrapping will be performed and measured. |
| -nslots <slot_threads> | -ns |
Create multiple threads on the same slot(s). Specify <slot>x<number of threads>, with multiple slots separated by commas. The example below creates 5 threads on slot 1 and 20 threads on slot 2: Example: -nslots 1x5,2x20 You must specify either this option or -slots. See -slots <slots>. |
| -objcount <objnum> | -obj | Interpretation of this parameter depends on test mode. If this is a find objects test, it specifies the number of objects to create. If this parameter is unspecified, a default of 1000 is used. For symgen operations, this specifies the total number of objects to create. If this parameter is unspecified, a default of 0 is used, which means 'unlimited'. For rsakeygen operations, this specifies the total number of key pairs to create. Again, if this parameter is unspecified, a default of 0 is used, which means 'unlimited'. |
| -objtype | -objt | Type of object to create for object creation/deletion test (mode objectcreation). 0 = data object (default), OR public key: 1=DSA, 2=RSA, 3=EC Montgomery, 4=EC Edwards, 5=ECDSA |
| -outputlen <length-in-bytes> | -ol | Size of output length in bytes for SHAKE. |
| -packet <packet_size> | -p | Size of packet used in operation. |
| -parmfile <param_file> | -prm | File for EC curve parameters or OAEP source data (0 = none for OAEP). |
| -password <password> | -pwd | Specify password to use for token. |
| -pbkd2prf | Specify the type of PRF to use for PBKD2-based key derivation. | |
| -ped <0/1> | -ped |
Specifies the type of Luna PED connection. This applies only to the first HSM slot to be specified using the -slots option. Valid values:0(local),1(remote) |
| -prftype <type> | -prf | Specify the type of PRF to use for PRF based key derivation. |
| -scroll | -scr | Scroll the output instead of overwriting it each time. |
| -session | -ses | Use session objects instead of token objects. |
| -sharefile <filename> | -shf | Shared data file used for operation. |
| -silent | -sil | Disables system "beep" that is generated when a error occurs. |
| -simblobuse | -sbu | Specify operation to use keys from SIM blobs. |
| -slots <slots> | -s |
List of slots to use (slot numbers separated by commas). List the same slot multiple times to create multiple threads on that slot. The example below creates 2 threads on slot 1 and 3 threads on slot 2: Example: -slots 1,1,2,2,2 To create many threads on the same slot, use -nslots instead. See -nslots <slot_threads>. |
| -startdate <YYYYMMDD> | -sta | Validity start date for key in format <YYYYMMDD>. |
| -subprime <size> | -sub | Size of the subprime in bits. |
| -sym_c_u_d <value> | -scud | For each test loop, create the key(s), use the key(s) and then delete the key(s). Only supported for symmetric enc/dec/sig/verifywhen -nosign, -noverify, -noenc and -nodec are NOT used. This argument takes a value that indicates how many times the key(s) should be used before it is deleted and a new key(s) is created. This value must be 1 or larger. |
| -symm <mechanism> | -sym | Select symmetric key mechanism for symderive/pbegen or key choice for symgen (can also use -keychoice). |
| -template | -tp | Attaches a generic unwrap template or derive template for the wrapunwrap or symderive mode respectively. |
| -timed <secs> | -t | Fixed amount of time to run (seconds). |
| -usage <uses> | -u | Number of times a key is allowed to be used. |
| -verbose | -v | Show all thread performances. Default is only first and last threads. |
| -wkeysize | -wkz | Size of RSA private key to be wrapped for aeskwp wrap/unwrap test. |
| -wkeytype | -wk | Type of key to be wrapped for key wrap/unwrap test using aeskwp. (mode aeswrapkwp/aeswrapgcm). 0 = DES3 (default), 1 = RSA private key |
Operating Modes
The following table lists the available operating modes for the multitoken utility. The operating mode is specified using the -mode parameter.
| Mode | Description |
|---|---|
| aescmac | AES CMAC sign |
| aesenc | AES ECB encrypt |
| aesenccbc | AES CBC encrypt |
| aesenccfb8 | AES CFB8 encrypt |
| aesenccfb128 | AES CFB128 encrypt |
| aesencctr | AES CTR encrypt |
| aesencgcm | AES GCM encrypt |
| aesenckw | AES KW encrypt |
| aesenckwp | AES KWP encrypt |
| aesencofb | AES OFB encrypt |
| aesgmac | AES GMAC sign |
| aesmac | AES MAC sign |
| aeswrapkw | AES KW wrap |
| aeswrapkwp | AES KWP wrap |
| aesxts | AES XTS encrypt |
| ariacmac | ARIA CMAC sign |
| ariaenc | ARIA ECB encrypt |
| ariaenccbc | ARIA CBC encrypt |
| ariaenccfb8 | ARIA CFB8 encrypt |
| ariaenccfb128 | ARIA CFB128 encrypt |
| ariaencctr | ARIA CTR encrypt |
| ariaencofb | ARIA OFB encrypt |
| ariamac | ARIA MAC sign |
| bip32childkeyderive | BIP32 Child Key (Normal) Derivation |
| bip32childkeyhardenedderive | BIP32 Child Key (Hardened) Derivation |
| bip32childkeypublicderive | BIP32 Child Key (public to public) Derivation |
| bip32gbcssha256sigver | SHA256 BIP32-GBCS sign |
| bip32masterkeyderive | BIP32 Master Key Derivation |
| bip32sha1sigver | SHA1 BIP32 sign |
| bip32sha224sigver | SHA224 BIP32 sign |
| bip32sha256sigver | SHA256 BIP32 sign |
| bip32sha384sigver | SHA384 BIP32 sign |
| bip32sha512sigver | SHA512 BIP32 sign |
| bip32sigver | BIP32 sign |
| des3enccfb8 | DES3 CFB8 encrypt |
| des3enccfb64 | DES3 CFB64 encrypt |
| des3encctr | DES3 CTR encrypt |
| des3encofb | DES3 OFB encrypt |
| descmac | DES3 CMAC sign |
| desenc | DES3 ECB encrypt |
| desenccbc | DES3 CBC encrypt |
| desmac | DES3 MAC sign |
| desx919mac | DES3 X919 MAC sign |
| dhparamsgen | DH Domain Parameter Generation |
| dsakeygen | DSA Key Generation |
| dsaparamsgen | DSA Domain Parameter Generation |
| dsasigver | DSA bare sign |
| dukptderive | DUKPT key derivation |
| ecdhcderive | ECDH Cofactor derive key |
| ecdhderive | ECDH derive key |
| ecdhderivewrapnew | ECDH derive and wrap new |
| ecdhderivewrapold | ECDH derive and wrap old |
| ecdsagbcssha256sigver | SHA256 ECDSA-GBCS sign |
| ecdsakeygen | ECDSA Key Generation |
| ecdsakeygenwextrabits | ECDSA Key Gen with Extra Bits |
| ecdsasha1sigver | SHA1 ECDSA sign |
| ecdsasha224sigver | SHA224 ECDSA sign |
| ecdsasha256sigver | SHA256 ECDSA sign |
| ecdsasha384sigver | SHA384 ECDSA sign |
| ecdsasha512sigver | SHA512 ECDSA sign |
| ecdsasha3-224sigver | SHA3-224 ECDSA sign |
| ecdsasha3-256sigver | SHA3-256 ECDSA sign |
| ecdsasha3-384sigver | SHA3-384 ECDSA sign |
| ecdsasha3-512sigver | SHA3-512 ECDSA sign |
| ecdsasigver | ECDSA sign |
| ecedwardskeygen | EC Edwards Key Generation |
| eciesaes128hmacsha256 | ECIES AES-128 enc/dec with HMAC SHA256 |
| eciesaes128hmacsha256shared | ECIES AES-128 enc/dec with HMAC SHA256 and shared data |
| eciesaes192hmacsha384 | ECIES AES-192 enc/dec with HMAC SHA384 |
| eciesaes192hmacsha384shared | ECIES AES-192 enc/dec with HMAC SHA384 and shared data |
| eciesaes256hmacsha512 | ECIES AES-256 enc/dec with HMAC SHA512 |
| eciesaes256hmacsha512shared | ECIES AES-256 enc/dec with HMAC SHA512 and shared data |
| eciesdes3hmacsha224 | ECIES DES3 enc/dec with HMAC SHA224 |
| eciesdes3hmacsha224shared | ECIES DES3 enc/dec with HMAC SHA224 and shared data |
| eciesshimaes128hmacsha256 | ECIES AES-128 with HMAC SHA256 decrypt |
| eciesshimaes128hmacsha256shared | ECIES AES-128 with HMAC SHA256 and shared data decrypt |
| eciesshimaes192hmacsha384 | ECIES AES-192 with HMAC SHA384 decrypt |
| eciesshimaes192hmacsha384shared | ECIES AES-192 with HMAC SHA384 and shared data decrypt |
| eciesshimaes256hmacsha512 | ECIES AES-256 with HMAC SHA512 decrypt |
| eciesshimaes256hmacsha512shared | ECIES AES-256 with HMAC SHA512 and shared data decrypt |
| eciesshimdes3hmacsha224 | ECIES DES3 with HMAC SHA224 decrypt |
| eciesshimdes3hmacsha224shared | ECIES DES3 with HMAC SHA224 and shared data decrypt |
| eciesshimxorhmacsha1 | ECIES XOR with HMAC SHA1 decrypt |
| eciesshimxorhmacsha1shared | ECIES XOR with HMAC SHA1 and shared data decrypt |
| eciesxorhmacsha1 | ECIES XOR enc/dec with HMAC SHA1 |
| eciesxorhmacsha1shared | ECIES XOR enc/dec with HMAC SHA1 and shared data |
| ecmontkeygen | EC Montgomery Key Generation |
| eddsanaclsha1sigver | SHA1 EDDSA NaCl sign |
| eddsanaclsha224sigver | SHA224 EDDSA NaCl sign |
| eddsanaclsha256sigver | SHA256 EDDSA NaCl sign |
| eddsanaclsha384sigver | SHA384 EDDSA NaCl sign |
| eddsanaclsha512sigver | SHA512 EDDSA NaCl sign |
| eddsanaclsigver | EDDSA NaCl sign |
| eddsasha1sigver | SHA1 EDDSA sign |
| eddsasha224sigver | SHA224 EDDSA sign |
| eddsasha256sigver | SHA256 EDDSA sign |
| eddsasha384sigver | SHA384 EDDSA sign |
| eddsasha512sigver | SHA512 EDDSA sign |
| eddsaphsigver | EDDSA PH sign |
| eddsasigver | EDDSA sign |
| extractinsert | Extract Insert masked objects |
| findobject | Find objects |
| haLogin | HA Login |
| kcdsakeygen | KCDSA Key Generation |
| kcdsasha1sigver | SHA51 KCDSA sign |
| kcdsasha1sigvernopad | SHA1 KCDSA NO-PAD sign |
| kcdsasha224sigver | SHA224 KCDSA sign |
| kcdsasha224sigvernopad | SHA224 KCDSA NO-PAD sign |
| kcdsasha256sigver | SHA256 KCDSA sign |
| kcdsasha256sigvernopad | SHA256 KCDSA NO-PAD sign |
| kcdsasha384sigver | SHA384 KCDSA sign |
| kcdsasha384sigvernopad | SHA384 KCDSA NO-PAD sign |
| kcdsasha512sigver | SHA512 KCDSA sign |
| kcdsasha512sigvernopad | SHA512 KCDSA NO-PAD sign |
| kcdsasigver | HAS160 KCDSA 1024-bit sign |
| kcdsasigvernopad | HAS160 KCDSA NO-PAD 1024-bit sign |
| keccak-224 | KECCAK-224 Hashing |
| keccak-256 | KECCAK-256 Hashing |
| keccak-384 | KECCAK-384 Hashing |
| keccak-512 | KECCAK-512 Hashing |
| md5 | MD5 Hashing |
| milenage | 3GPP Milenage AUTN |
| multisignvalue | Multisign w/ masked key NOTE: not used; deprecated. |
| ntlsEcho | Test NTLS/SSL Throughput |
| objectcreation | Create/delete object |
| openclosesession | Open/close session |
| pbegen | PBE key generation |
| randgen | Random number generation |
| rc4enc | RC4 encrypt |
| rsa1863auxprimekeygen | RSA FIPS 186-3 using Auxiliary Primes key generation |
| rsa1863primekeygen | RSA FIPS 186-3 using Primes key generation |
| rsaenc | RSA encrypt |
| rsakeygen | RSA key generation |
| rsaoaepenc | RSA OAEP encrypt |
| rsapkcsenc | RSA PKCS encrypt / decrypt |
| rsasigver | RSA sign |
| rsax931keygen | RSA X9.31 key generation |
| rsax931sigver | X9.31 RSA sign |
| seedcmac | SEED CMAC sign |
| seedenc | SEED ECB encrypt |
| seedenccbc | SEED CBC encrypt |
| seedencctr | SEED CTR encrypt |
| seedmac | SEED MAC sign |
| sha1 | SHA-1 Hashing |
| sha1dsasigver | SHA1 DSA sign |
| sha1hmac | SHA1 HMAC sign |
| sha1rsapsssigver | SHA1 RSA PSS sign |
| sha1rsasigver | SHA1 with RSA sign |
| sha1rsax931sigver | SHA1 X9.31 RSA sign |
| sha224 | SHA-224 Hashing |
| sha224dsasigver | SHA224 DSA sign |
| sha224hmac | SHA224 HMAC sign |
| sha224rsaoaepenc | SHA224 RSA OAEP encrypt |
| sha224rsapsssigver | SHA224 RSA PSS sign |
| sha224rsasigver | SHA224 with RSA sign |
| sha224rsax931sigver | SHA224 X9.31 RSA sign |
| sha256 | SHA-256 Hashing |
| sha256dsasigver | SHA256 DSA sign |
| sha256hmac | SHA256 HMAC sign |
| sha256rsaoaepenc | SHA256 RSA OAEP encrypt |
| sha256rsapsssigver | SHA256 RSA PSS sign |
| sha256rsasigver | SHA256 with RSA sign |
| sha256rsax931sigver | SHA256 X9.31 RSA sign |
| sha384 | SHA-384 Hashing |
| sha384hmac | SHA384 HMAC sign |
| sha384rsaoaepenc | SHA384 RSA OAEP encrypt |
| sha384rsapsssigver | SHA384 RSA PSS sign |
| sha384rsasigver | SHA384 with RSA sign |
| sha384rsax931sigver | SHA384 X9.31 RSA sign |
| sha512 | SHA-512 Hashing |
| sha512hmac | SHA512 HMAC sign |
| sha512rsaoaepenc | SHA512 RSA OAEP encrypt |
| sha512rsapsssigver | SHA512 RSA PSS sign |
| sha512rsasigver | SHA512 with RSA sign |
| sha512rsax931sigver | SHA512 X9.31 RSA sign |
| shake-128 | SHAKE-128 Hashing |
| shake-256 | SHAKE-256 Hashing |
| sim3extractinsert | SIM3 Extract Insert masked objects |
| simextractinsert | SIMExtract Insert masked objects |
| simmultisign | SIMMultisign w/ masked key |
| sm2dsasha1sigver | SHA1 SM2DSA sign |
| sm2dsasha224sigver | SHA224 SM2DSA sign |
| sm2dsasha256sigver | SHA256 SM2DSA sign |
| sm2dsasha384sigver | SHA384 SM2DSA sign |
| sm2dsasha512sigver | SHA512 SM2DSA sign |
| sm2dsasigver | SM2DSA sign |
| sm2dsasm3sigver | SM3 SM2DSA sign |
| sm3 | SM3 Hashing |
| sm3hmac | SM3 HMAC sign |
| sm4enc | SM4 ECB encrypt |
| sm4enccbc | SM4 CBC encrypt |
| sm4enccbcpad | SM4 CBC PAD encrypt |
| symderive | Symmetric key derivation |
| symgen | Symmetric key generation |
| tuak | 3GPP Tuak AUTN |
| wrapunwrap | Wrap/unwrap operations |
| x942dhderive | X9.42 DH Derive |
| x942dhhybridderive | X9.42 DH Hybrid Derive |
| x942dhkeygen | X9.42 DH Key Pair Generation |
| x942dhparamsgen | X9.42 DH Domain Parameter Generation |
Notes
1.If you are performing RSA operations, you have the option of specifying a key size (512, 1024, 2048, 4096, 8192). If no key size is specified, the default key size of 2048 will be used. For example:
multitoken -mode rsasigver -key 512 -slots 1
2.If you are performing wrapunwrap operation, it will perform the following operations:
•Generate RSA key pair and a symmetric DES key.
•Wrap DES key with RSA public key.
•Unwrap wrapped key above with RSA private key.
• Verify the unwrapped key.
3.If you are performing a Multisign operation, you have the option of specifying a key size (512, 1024, 2048, 4096, 8192). If no key size is specified, the default key size of 1024 is used. For example:
multitoken m simmultisign -ns 6x20 -pwd myuserpin2 -f
4.When using simmultisign with Luna HSM Firmware 7.7.0 or newer, the indicated blob must contain no more than one key/key pair that is suitable for the requested signature mechanism, otherwise an error is returned.
5.A thread is spawned to perform tests on each slot specified. A slot can be specified multiple times, in which
case multiple threads will be created for the slot.
6.For modes :
•sha256rsasigver - SHA256 with RSA
•sha384rsasigver - SHA384 with RSA
•sha512rsasigver - SHA512 with RSA
If you specify a keysize on the command line (-key, any of 1024, 2048 or 4096), a file called "1024" or "2048" or "4096" is created - that is the keysize parameter is parsed as a filename to which results are saved.
7.There are two types of ECIES modes, regular modes and SHIM modes. The non-SHIM modes perform normal ECIES encryption, decryption, or both. The ECIES SHIM modes (ECIES modes with the word "shim" in them) are designed to test the ECIES SHIM implementation. The ECIES SHIM only supports decryption operations, so it requires all input (private key, encrypted data and plaintext) to be specified as input files using the parameters -ecieskey, -eciesenc and -eciesenc. The input files can be created by running the non-SHIM modes, and specifying the parameters -ecieskey, -eciesdata and -eciesenc, which are optional for the non-SHIM modes.
For non-SHIM ECIES modes:
•-ecieskey -- Specifies the file to receive the DER-encoded private key.
•-eciesdata -- Specifies the file to receive the plaintext data used.
•-eciesece -- Specifies the file to receive the encrypted data.
For ECIES SHIM modes:
•-ecieskey -- Specifies the file that contains the DER-encoded private key.
•-eciesdata -- Specifies the file that contains the plaintext data to use.
•-eciesece -- Specifies the file that contains the encrypted data.
Named and User-defined Curves
The Luna HSMs employ named and user-defined curves. Multitoken supports this option, as illustrated in the following example:
C:\Program Files\SafeNet\LunaClient>multitoken -mode ecdsasigver -s 1,1,1,1,1,1,1,1
Prime field curves:
[0]secp112r1 [1]secp112r2 [2]secp128r1 [3]secp128r2
[4]secp160k1 [5]secp160r1 [6]secp160r2 [7]secp192k1
[8]secp224k1 [9]secp224r1 [10]secp256k1 [11]secp384r1(P-384)
[12]secp521r1(P-521)
[13]X9_62_prime192v1 [14]X9_62_prime192v2 [15]X9_62_prime192v3
[16]X9_62_prime239v1 [17]X9_62_prime239v2 [18]X9_62_prime239v3
[19]X9_62_prime256v1(P-256)
Characteristic two field curves:
[20]sect113r1 [21]sect113r2 [22]sect131r1 [23]sect131r2
[24]sect163k1 [25]sect163r1 [26]sect163r2 [27]sect193r1
[28]sect193r2 [29]sect233k1 [30]sect233r1 [31]sect239k1
[32]sect283k1 [33]sect283r1 [34]sect409k1 [35]sect409r1
[36]sect571k1 [37]sect571r1
[38]X9_62_c2pnb163v1 [39]X9_62_c2pnb163v2 [40]X9_62_c2pnb163v3
[41]X9_62_c2pnb176v1 [42]X9_62_c2tnb191v1 [43]X9_62_c2tnb191v2
[44]X9_62_c2tnb191v3 [45]X9_62_c2pnb208w1 [46]X9_62_c2tnb239v1
[47]X9_62_c2tnb239v2 [48]X9_62_c2tnb239v3 [49]X9_62_c2pnb272w1
[50]X9_62_c2pnb304w1 [51]X9_62_c2tnb359v1 [52]X9_62_c2pnb368w1
[53]X9_62_c2tnb431r1
[54]Brainpool_P160r1 [55]Brainpool_P160t1 [56]Brainpool_P192r1
[57]Brainpool_P192t1 [58]Brainpool_P224r1 [59]Brainpool_P224t1
[60]Brainpool_P256r1 [61]Brainpool_P256t1 [62]Brainpool_P320r1
[63]Brainpool_P320t1 [64]Brainpool_P384r1 [65]Brainpool_P384t1
[66]Brainpool_P512r1 [67]Brainpool_P512t1
User Defined curves:
[68]Microsoft PlayReady P-160
Please pick a curve (0-67) or enter (99) for a user defined curve:99
Please enter the filename for the EC parameters:
Here, you would provide the filepath to the file specifying the Elliptical Curve parameters. The format and content of the parameter file follow industry standards, and are discussed in more detail in Named Curves and User-Defined Parameters.
SKS and Per Key Auth
PerKeyAuth and/or SKS
For example
Per Key Authorization:
The "-keyauthdata" option can be used to specify authorization data (that is CKA_AUTH_DATA) that should be applied to any key(s) created to support the test.
For example, in an ECDH test, authorization data will be applied to the ECDH keys. The "-keyauthtype" can be used to specify how the authorization data is to be used.
Two main ways to use are;
>authorize the key(s) once, and use it many times and then rescind authorization, and
>authorize the key before each use and rescind authorization after each use.
For example, in an ECDH test,
>the private key can be authorized once and used for the duration of the test,
or
>the private key can be authorized before each ECDH operation and authorization is rescinded after each operation.
For tests that use an initial set of keys and create child keys (that is, derivation or wrap/unwrap tests), "applytochild" can be used specify that the Per Key Authorization settings should also be applied to the child key(s).
For key generation test, "-keyauthdata" can be specified as the generated keys are not used. The key authorization data will be applied to the generated key.
Per Key Authorization functionality can be used only on User Partitions and only by the Crypto-Officer role.
Scalable Key Storage (SKS)
Options used for -simblobuse
SIM insertion and keys deletion test:
1.Specify both -nodec & -noenc or both -nosign and -noverify
2.Specify any crypto mode (e.g. any encrypt/decrypt or sign/verify mode)
SIM insertion, Per Key Authorization, keys deletion test:
1.Specify both -nodec & -noenc or both -nosign and -noverify
2.Specify any crypto mode (e.g. any encrypt/decrypt or sign/verify mode)
Specify Per Key Authorization options.
SIM insertion, Per Key Authorization, crypto (enc/dec or sign/verify), keys deletion test:
1.Specify any crypto mode (e.g. any encrypt/decrypt or sign/verify mode)
2.Specify Per Key Authorization options.
Example with LCO role
[me@localhost bin]# ./multitoken m simextractinsert -ns 6x20 -lco -pwd myuserpin2 -f
multitoken (64-bit) v8.0.0-161. Copyright (c) 2019 SafeNet. All rights reserved.
Warning: Key size not specified. Using default key size of 1024.
Initializing library...Finished Initializing
...done.
Do you wish to continue?
Enter 'y' or 'n':
Constructing thread objects.
Logging in to tokens...
slot 6... Serial Number 1334093726636
Please wait, creating test threads.
Test threads created successfully. Press ENTER to terminate testing.
SIMExtract Insert masked objects:
Using token objects.
Logged in as Limited Crypto Officer.
+ xfers/sec | elapsed
6, 0 6, 19 | total average | time (secs) | /sec | /sec
------ ------ | ------- ---------- | ------------ | ---------- | ----------
10.0 10.0 | 206.4 211.923* | 350 | 0.0 | 0.0
Waiting for threads to terminate.
[me@localhost bin]# ./multitoken m simmultisign -ns 6x20 -lco -pwd myuserpin2 -f
multitoken (64-bit) v8.0.0-161. Copyright (c) 2019 SafeNet. All rights reserved.
Warning: Blob count not specified. Using default key size of 1.
Initializing library...Finished Initializing
...done.
Do you wish to continue?
Enter 'y' or 'n':
Constructing thread objects.
Logging in to tokens...
slot 6... Serial Number 1334093726636
Please wait, creating test threads.
Test threads created successfully. Press ENTER to terminate testing.
SIMMultisign w/ masked key : (packet size = 16 bytes)
Using token objects.
Logged in as Limited Crypto Officer.
+ signatures/second | elapsed
6, 0 6, 19 | total average | time (secs) | /sec | /sec
------ ------ | ------- ---------- | ------------ | ---------- | ----------
92.8 92.0 | 1844.9 1843.808* | 145 | 0.0 | 0.0
Waiting for threads to terminate.
[me@localhost bin]#
