TKE uses the TKE workstation PKA key storage for holding one authority signature key. This can be a 1024-bit, 2048-bit, or 4096-bit RSA signature key.
Figure 1. TKE Workstation PKA Key Storage Window
The TKE Workstation PKA Key Storage window displays the following
information:
- Key label
- Key typeThe type of key is one of the following:
- RSA-PRIV - A token holding the private and public key part of a PKA key pair. This is the key type for an authority signature key.
- RSA-PUB - A token holding the public part of a PKA key pair.
- RSA-OPT - A token holding the private and public part of a PKA key part in optimized form.
- Key Token TypeThe type of token is one of the following:
- Internal - The key token is internal and the key value is enciphered under the TKE workstation crypto adapter master key.
- External - The key token is external and the key value is either enciphered by a key-encrypting key or unenciphered.
- NO_KEY - The key token is empty.
- Key Identifier - Identifies the RSA key in PKA key storage. The key identifier is the SHA-256 hash of the DER-encoded public modulus and public exponent of the RSA key pair.
- Created date and time
- Updated date and time