TKE uses the TKE workstation PKA key storage for holding one authority
signature key. This can be a 1024-bit, 2048-bit, or 4096-bit RSA signature key.
Figure 1. TKE Workstation PKA Key Storage Window
The TKE Workstation PKA Key Storage window displays the following
information:
- Key label
- Key type
The type of key is one of the following:
- RSA-PRIV - A token holding the private and public key part of
a PKA key pair. This is the key type for an authority signature key.
- RSA-PUB - A token holding the public part of a PKA key pair.
- RSA-OPT - A token holding the private and public part of a PKA
key part in optimized form.
- Key Token Type
The type of token is one of the following:
- Internal - The key token is internal and the key value is enciphered
under the TKE workstation crypto adapter master key.
- External - The key token is external and the key value is either
enciphered by a key-encrypting key or unenciphered.
- NO_KEY - The key token is empty.
- Key Identifier - Identifies the RSA key in PKA key storage. The
key identifier is the SHA-256 hash of the DER-encoded public modulus
and public exponent of the RSA key pair.
- Created date and time
- Updated date and time