|
|
|
The following sample shows a key protection control statement in TBESAF99 format. In this example, a global key definition for asymmetric keys with the name of AES256_KEY will be generated to protect the key. The second entry will protect the codebook encryption key, BOOK1 only on BES6.
BES TYPE=KEYSYMM,NAME=AES256_KEY
BES6 TYPE=KEYCODE,NAME=BOOK1
The following sample shows the resulting key protection control statements generated by TBESAF99 for importing into CA Top Secret. After the control statements are generated, you must add the appropriate user ID information.
TSS ADDTO(PRODDEPT ) CA@BES(BES.KEYSSYMM.AES256_KEY) UNDERCUT TSS PERMIT(SECADMIN) CA@BES(BES.KEYSSYMM.AES256_KEY) ACCESS(READ) TSS ADDTO(PRODDEPT ) CA@BES(BES6.KEYCODE.BOOK1) UNDERCUT TSS PERMIT(SECADMIN) CA@BES(BES6.KEYCODE.BOOK1) ACCESS(READ)
| Copyright © 2011 CA. All rights reserved. | Tell Technical Publications how we can improve this information |