z/OS Cryptographic Services ICSF Application Programmer's Guide
Previous topic | Next topic | Contents | Index | Contact z/OS | Library | PDF


Callable Services Supporting Digital Signatures

z/OS Cryptographic Services ICSF Application Programmer's Guide
SA22-7522-16

ICSF provides these services that support digital signatures.

Restrictions:

  • DSS is only supported on the IBM eServer zSeries 900.
  • ECDSA is only supported through the CEX3C cryptographic hardware on the .

Digital Signature Generate Callable Service (CSNDDSG and CSNFDSG)

This service generates a digital signature using an RSA, DSS, or ECC private key. It supports these methods of signature generation:

  • ANSI X9.30 (DSS)
  • ANSI X9.30 (ECDSA)
  • ANSI X9.31 (RSA)
  • ISO 9796-1 (RSA)
  • RSA DSI PKCS 1.0 and 1.1 (RSA)
  • Padding on the left with zeros (RSA)

The input text must have been previously hashed using the one-way hash generate callable service or the MDC generation service.

Digital Signature Verify Callable Service (CSNDDSV and CSNFDSG)

This service verifies a digital signature using an RSA, DSS, or ECC public key. This service supports these methods of signature generation:

  • ANSI X9.30 (DSS)
  • ANSI X9.30 (ECDSA)
  • ANSI X9.31 (RSA)
  • ISO 9796-1 (RSA)
  • RSA DSI PKCS 1.0 and 1.1 (RSA)
  • Padding on the left with zeros (RSA)

The text that is input to this service must be previously hashed using the one-way hash generate callable service or the MDC generation service.

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014