Summary of the CCA nodes and resource control verbs
A table of the CCA nodes and resource control verbs, including references to the verb descriptions.
| Entry point | Verb name | Description | Topic/Page |
|---|---|---|---|
| Using CCA nodes and resource control verbs | |||
| CSUAACM | Access Control Maintenance | Queries or controls installed roles. | Access Control Maintenance (CSUAACM) |
| CSUAACT | Access Control Tracking | Tracks the usage of ACPs for a defined span of time, and also queries that tracking information. | Access Control Tracking (CSUAACT) |
| CSUACFQ | Cryptographic Facility Query | Retrieves information about the coprocessor and the CCA application program in that coprocessor. | Cryptographic Facility Query (CSUACFQ) |
| CSUACFV | Cryptographic Facility Version | Retrieve the Security Application Program Interface (SAPI) version and build date. | Cryptographic Facility Version (CSUACFV) |
| CSUACRA | Cryptographic Resource Allocate | Allocates specific CCA coprocessor for use by the thread or process, depending on the scope of the verb. | Cryptographic Resource Allocate (CSUACRA) |
| CSUACRD | Cryptographic Resource Deallocate | De-allocates a specific CCA coprocessor that is allocated by the thread or process, depending on the scope of the verb. | Cryptographic Resource Deallocate (CSUACRD) |
| CSNBKSI | Key Storage Initialization | This verb initializes a key-storage file using the current symmetric or asymmetric master-key. The initialized key storage does not contain any preexisting key records. The name and path of the key storage data and index file are established differently in each operating environment. Note that HMAC keys are not supported for key storage. | Key Storage Initialization (CSNBKSI) |
| CSUALGQ | Log Query | This verb retrieves system log (SYSLOG) message data and CCA log message data from the coprocessor. SYSLOG data is available for one of the five latest boot cycles (current boot cycle and up to four previous boot cycles). CCA log message data is optionally available during the current boot cycle. The verb supports service personnel and developers in testing and debugging issues. | Log Query (CSUALGQ) |
| CSNBMKP | Master Key Process | Operates on the three master-key registers: new, current, and old. This verb is used to clear the new and the old master-key registers, generate a random master-key value in the new master-key register, XOR a clear value as a key part into the new master-key register, and set the master key, which transfers the current master-key to the old master-key register and the new master-key to the current master-key register. |
Master Key Process (CSNBMKP) |
| CSUARNT | Random Number Tests | Invokes the USA NIST FIPS PUB 140-1 specified cryptographic operational tests. These tests, selected by a rule_array keyword, consist of known-answer tests of DES, RSA, and SHA-1 processes and, for random numbers, mono bit test, poker test, runs test, and log-run test. | Random Number Tests (CSUARNT) |