Required commands
The required commands for CSNDPKE.
This verb requires the PKA Encrypt command (offset X'011E') to be enabled in the active role.
Use of a CRYSTALS-Kyber public key in the PKA_key_identifier parameter requires the PKA Encrypt - Allow CRYSTALS-Kyber keys command (offset X'0083').
The PKA Encrypt verb also requires the following commands to be enabled in the active role to disallow the encryption of clear source data:
| Rule-array keyword | Offset | Command |
|---|---|---|
| MRP | X'0208' | PKA Encrypt - Disallow MRP |
| PKCS-1.2 | X'0206' | PKA Encrypt - Disallow PKCS-1.2 |
| PKCSOAEP | X'0209' | PKA Encrypt - Disallow PKCSOAEP |
| ZERO-PAD | X'0207' | PKA Encrypt - Disallow ZEROPAD |