Skip to content

/AWS1/CL_PCYEXPDIFFIEHELLMAN00

Key derivation parameter information for key material export using asymmetric ECDH key exchange method.

CONSTRUCTOR

IMPORTING

Required arguments:

iv_privatekeyidentifier TYPE /AWS1/PCYKEYARNORKEYALIASTYPE /AWS1/PCYKEYARNORKEYALIASTYPE

The keyARN of the asymmetric ECC key created within Amazon Web Services Payment Cryptography.

iv_certauthoritypublickeyid TYPE /AWS1/PCYKEYARNORKEYALIASTYPE /AWS1/PCYKEYARNORKEYALIASTYPE

The keyARN of the CA that signed the PublicKeyCertificate for the client's receiving ECC key pair.

iv_publickeycertificate TYPE /AWS1/PCYCERTIFICATETYPE /AWS1/PCYCERTIFICATETYPE

The public key certificate of the client's receiving ECC key pair, in PEM format (base64 encoded), to use for ECDH key derivation.

iv_derivekeyalgorithm TYPE /AWS1/PCYSYMMETRICKEYALGORITHM /AWS1/PCYSYMMETRICKEYALGORITHM

The key algorithm of the shared derived ECDH key.

iv_keyderivationfunction TYPE /AWS1/PCYKEYDERIVATIONFUNCTION /AWS1/PCYKEYDERIVATIONFUNCTION

The key derivation function to use when deriving a key using ECDH.

iv_keyderivationhashalg TYPE /AWS1/PCYKEYDERIVATIONHASHALG /AWS1/PCYKEYDERIVATIONHASHALG

The hash type to use when deriving a key using ECDH.

io_derivationdata TYPE REF TO /AWS1/CL_PCYDIFFIEHELLMANDER00 /AWS1/CL_PCYDIFFIEHELLMANDER00

The shared information used when deriving a key using ECDH.

Optional arguments:

io_keyblockheaders TYPE REF TO /AWS1/CL_PCYKEYBLOCKHEADERS /AWS1/CL_PCYKEYBLOCKHEADERS

Optional metadata for export associated with the key material. This data is signed but transmitted in clear text.

Queryable Attributes

PrivateKeyIdentifier

The keyARN of the asymmetric ECC key created within Amazon Web Services Payment Cryptography.

Accessible with the following methods

Method Description
GET_PRIVATEKEYIDENTIFIER() Getter for PRIVATEKEYIDENTIFIER, with configurable default
ASK_PRIVATEKEYIDENTIFIER() Getter for PRIVATEKEYIDENTIFIER w/ exceptions if field has n
HAS_PRIVATEKEYIDENTIFIER() Determine if PRIVATEKEYIDENTIFIER has a value

CertificateAuthorityPublicKeyIdentifier

The keyARN of the CA that signed the PublicKeyCertificate for the client's receiving ECC key pair.

Accessible with the following methods

Method Description
GET_CERTAUTHORITYPUBLICKEYID() Getter for CERTAUTHORITYPUBLICKEYID, with configurable defau
ASK_CERTAUTHORITYPUBLICKEYID() Getter for CERTAUTHORITYPUBLICKEYID w/ exceptions if field h
HAS_CERTAUTHORITYPUBLICKEYID() Determine if CERTAUTHORITYPUBLICKEYID has a value

PublicKeyCertificate

The public key certificate of the client's receiving ECC key pair, in PEM format (base64 encoded), to use for ECDH key derivation.

Accessible with the following methods

Method Description
GET_PUBLICKEYCERTIFICATE() Getter for PUBLICKEYCERTIFICATE, with configurable default
ASK_PUBLICKEYCERTIFICATE() Getter for PUBLICKEYCERTIFICATE w/ exceptions if field has n
HAS_PUBLICKEYCERTIFICATE() Determine if PUBLICKEYCERTIFICATE has a value

DeriveKeyAlgorithm

The key algorithm of the shared derived ECDH key.

Accessible with the following methods

Method Description
GET_DERIVEKEYALGORITHM() Getter for DERIVEKEYALGORITHM, with configurable default
ASK_DERIVEKEYALGORITHM() Getter for DERIVEKEYALGORITHM w/ exceptions if field has no
HAS_DERIVEKEYALGORITHM() Determine if DERIVEKEYALGORITHM has a value

KeyDerivationFunction

The key derivation function to use when deriving a key using ECDH.

Accessible with the following methods

Method Description
GET_KEYDERIVATIONFUNCTION() Getter for KEYDERIVATIONFUNCTION, with configurable default
ASK_KEYDERIVATIONFUNCTION() Getter for KEYDERIVATIONFUNCTION w/ exceptions if field has
HAS_KEYDERIVATIONFUNCTION() Determine if KEYDERIVATIONFUNCTION has a value

KeyDerivationHashAlgorithm

The hash type to use when deriving a key using ECDH.

Accessible with the following methods

Method Description
GET_KEYDERIVATIONHASHALG() Getter for KEYDERIVATIONHASHALGORITHM, with configurable def
ASK_KEYDERIVATIONHASHALG() Getter for KEYDERIVATIONHASHALGORITHM w/ exceptions if field
HAS_KEYDERIVATIONHASHALG() Determine if KEYDERIVATIONHASHALGORITHM has a value

DerivationData

The shared information used when deriving a key using ECDH.

Accessible with the following methods

Method Description
GET_DERIVATIONDATA() Getter for DERIVATIONDATA

KeyBlockHeaders

Optional metadata for export associated with the key material. This data is signed but transmitted in clear text.

Accessible with the following methods

Method Description
GET_KEYBLOCKHEADERS() Getter for KEYBLOCKHEADERS