PKA private key tokens may optionally have a 64-byte private_key_name field. If private_key_name exists, ICSF uses RACROUTE REQUEST=AUTH to verify it prior to using the token in a callable service. For additional security, the processor also validates the entire private key token.