Versions Compared

Old Version 1

changes.mady.by.user Alexandre Munsch

Saved on

compared with

New Version 2

changes.mady.by.user Alexandre Munsch

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

{

Field

Description

“keyid”: ”<key id>”

ID of the generated key

“peerPubKey”:”<peer public key>”

Base64 encoded P-521 ECDH peer public key in X9.63 format (uncompressed).

“sharedIV”:”<shared IV>”

Base64 encoded shared IV

“hmackey”:”<wrapped key>”

Base64 encoded wrapped hmac key

}

The following figure describes the HMAC key generation and wrapping flow.

HMAC key generation and wrapping

Info

The generated key is to be persisted 3 months by the HSM.