Crypto Module Notebook Co-Sign tab

For co-signing a pending command in a host crypto module, open the notebook for that crypto module and select the Co-Sign tab. The Co-Sign tab panel displays the following information on the command to co-sign:

Pending command – Name of the pending command
Pending command reference – Unique hexadecimal number returned to the issuer of the command
Loading Authority – Issuer of the command
Pending command details container – Important parts of the pending command
Signature requirements container – Current status for the fulfillment of the signature requirements
For a host crypto module, exactly two signatures are required for a dual-signature command. The authority index and name of each authority allowed to sign the pending command are displayed.

Authorities who have already signed the command are indicated by a Yes in the column labeled Signed.

Pressing the Co-sign push button initiates the signing of the pending command. It opens windows in which you can choose the source of the authority signature key and then choose the authority index associated with that key. The possible authority signature key sources are as follows:

Current key - Uses the currently loaded signature key
Smart card - Reads an authority signature key from a TKE smart card
Binary file - Reads an authority signature key from a hard disk or diskette
Key storage - Reads an authority signature key from PKA key storage
Default key - Uses the default authority signature key hardcoded into TKE

Press Delete if you want to delete the pending command.