You can use the Utilities panel to generate a checksum and either an optional verification pattern or an optional hash pattern for a key part. You can use this panel to generate a checksum for a key part even if ICSF has not been initialized.
CSFUTL00 ---------------- ICSF - Utilities -------------------------
OPTION ===> 4
Enter the number of the desired option above.
1 ENCODE - Encode data
2 DECODE - Decode data
3 RANDOM - Generate a random number
4 CHECKSUM - Generate a checksum and verification and
hash patterns
5 PPKEYS - Generate master key values from a pass phrase
6 PKDSKEYS - Manage keys in the PKDS
The Checksum and Verification and Hash Pattern panel appears. See Figure 2.
CSFMKV00 ------------ ICSF - Checksum and Verification and Hash Pattern -----
COMMAND ===>
Enter data below:
Key Type ===> (Selection panel displayed if blank)
Key Value ===> 51ED9CFA90716CFB Input key value 1
===> 58403BFA02BD13E8 Input key value 2
===> 9B28AEFA8C47760F Input key value 3 (AES & ECC & RSA Keys)
===> 8453313235ABF69C Input key value 4 (AES & ECC Keys only)
Checksum : 00 Check digit for key value
Key Part VP : 0000000000000000 Verification Pattern
Key Part HP : 0000000000000000 Hash Pattern
: 0000000000000000
If you accessed the Random Number Generator panel prior to this panel, the random numbers that are generated appear automatically in the Key Value fields.
If you leave the Key Type field blank and press ENTER, the Key Type Selection panel appears. See Figure 3.
CSFMKV10 ------------- ICSF - Key Type Selection Panel ---- ROW 1 to 9 OF 9
COMMAND ===> SCROLL ===> PAGE
Select one key type only
KEY TYPE DESCRIPTION
AES-MK AES Master Key
ASYM-MK Asymmetric Master key
DES-MK DES Master key (16-byte)
DES24-MK DES Master key (24-byte)
ECC-MK ECC Master key
EXPORTER Export key encrypting key
IMP-PKA Limited Authority Importer key
IMPORTER Import key encrypting key
IPINENC Input PIN encrypting key
OPINENC Output PIN encrypting key
PINGEN PIN generation key
PINVER PIN verification key
RSA-MK RSA Master key
***************************** BOTTOM OF DATA *****************************
In this example, we have selected the DES-MK master key.
CSFMKV00 ------ ICSF - Checksum and Verification and Hash Pattern ---
COMMAND ===>
Enter data below:
Key Type ===> MASTER (Selection panel displayed if blank)
Key Value ===> 51ED9CFA90716CFB Input key value 1
===> 58403BFA02BD13E8 Input key value 2
===> 0000000000000000 Input key value 3 (AES & ECC & RSA Keys)
===> 0000000000000000 Input key value 4 (AES & ECC Keys only)
Checksum : 40 Check digit for key part
Key Part VP : 0CCE190A635A6C89 Verification Pattern
Key Part HP : EA58E51179754FB7 Hash Pattern
: C102957465CE479E
Save these values in a secure place along with the key part values in case of a tamper. If the cryptographic feature detects tampering, it clears the master key, and you have to reenter the same master key again.