MAC Verify2 (CSNBMVR2)
Use the MAC Verify2 verb to verify a keyed hash message authentication code (HMAC) or a ciphered message authentication code (CMAC) for the message text provided as input.
The MAC verify key must be in a variable-length HMAC key token for HMAC and an AES MAC token for CMAC. The key must have a key usage that allows the key to verify MACs.
For the HMAC algorithm, clear key tokens are supported. Clear HMAC keys can be built using the Key Token Build2 (CSNBKTB2J) callable service.
Note: This verb supports PCI-HSM 2016
compliant-tagged key tokens.