Valid on z/OS
Use the BPECC keyword to generate a key pair using the brainpool ECC algorithm instead of the RSA algorithm. This parameter cannot be used with the ICSF, DSA, or NISTECC parameters. Because the key is generated using ICSF PKCS #11 functions, the ICSF subsystem must be operational and configured for PKCS #11 operation.
Minimally, ICSF must be at the HCR7770 level. The private key is placed in the CA Top Secret database. When ICSF is at the HCR7780 level or higher, specify PCICC or PKDSLBL to store the private key in ICSF instead of the CA Top Secret database.
This keyword has the following format:
TSS GENCERT(acid) DIGICERT(8-byte name) BPECC
The keyword is used with:
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|