Login
    Contenu x
    AAL2GenMessageDeactivationICSF
    • 22 Jan 2025
    • 2 Minutes à lire
    • Sombre
      Lumière
    • PDF
    Contenu

    AAL2GenMessageDeactivationICSF

    • Mis à jour le 22 Jan 2025
    • 2 Minutes à lire
    • Sombre
      Lumière
    • PDF
    The content is currently unavailable in French. You are viewing the default English version.
    Résumé de l’article

    Function prototype

    aat_int32 AAL2GenMessageDeactivationICSF (
                                aat_ascii       *PKBlob,
                                TKernelParms    *CallParms,
                                aat_ascii       *aStorageKeyNameIn,
                                aat_ascii       *aInitialVectorIn,
                                aat_ascii       *MessageVector,
                                aat_int32       SeqNum,
                                aat_ascii       *DeactivationMessage,
                                aat_int32       *DeactivationMessageLength);

    Description

    This function generates a deactivation message from a sequence number, using the payload key embedded into the payload key BLOB.

    It is only applicable to hardware or software Digipass authenticators compliant with the multi-device two-step activation (in the context of multi-device licensing). For more information, refer to the Authentication Suite Server SDK Product Guide.

    The payload key BLOB must be the one corresponding to the Digipass serial number the deactivation message will target.

    The deactivation message generation is only applicable if the Secure Channel feature has been ordered (configured by OneSpan at the time of order).

    Parameters

      Table: Parameters (AAL2GenMessageDeactivationICSF)
    TypeNameUseDescription
    aat_ascii *PKBlobIContains the payload key BLOB that has been generated for the Digipass instances activated with a particular serial number license.
    TKernelParms *CallParmsIStructure of runtime parameters to use during this function call.
    aat_ascii *aStorageKeyNameInIString of up to 64+1 characters, left-justified, null-terminated, or right-padded with spaces. This is the label of the ICSF storage key used to encrypt the sensitive Digipass application BLOB data.
    aat_ascii *aInitialVectorInI

    String of 16 hexadecimal characters, left-justified, null-terminated, or right-padded with spaces. This is the initial vector used to encrypt the sensitive authenticator application BLOB data.

    aat_ascii *MessageVectorI

    A string of up to 26+1 characters containing the message parameter settings, null-terminated (obtained during import).

    aat_int32SeqNumI

    Integer containing the sequence number of the Digipass instance to deactivate.

    aat_ascii *DeactivationMessageOString of up to 50+1 hexadecimal characters, null-terminated. In case of a successful operation, this parameter contains the generated deactivation message.
    aat_int32 *DeactivationMessageLengthI/OIn input, this parameter must indicate the size of the allocated buffer for the DeactivationMessage parameter (recommended 51 bytes). In output, this parameter indicates the length of the DeactivationMessage string (without the null-terminated character).

    COBOL calling convention

    Entry point: AA2GMDIC
02   W-PKBLOB              PIC X(89).
02   W-KERNELPARMS.
     03  W-PARMCOUNT      PIC 9(8) USAGE BINARY.
     03  W-PARM01         PIC 9(8) USAGE BINARY.
     . . .
     03  W-PARM19         PIC 9(8) USAGE BINARY.
02   W-MSGVECTOR          PIC X(27).
02   W-SEQNUM             PIC 9(8) USAGE BINARY.
02   W-DEACTMSG           PIC X(51).
02   W-DEACTMSG-LENGTH    PIC 9(8) USAGE BINARY VALUE 51.
02   W-RETURN             PIC S9(8) USAGE BINARY.
02   W-STORAGEKEY         PIC X(65).
02   W-INITVECTOR         PIC X(17).
02   W-API-NAME           PIC X(8) VALUE 'AA2GMDIC'.
. . .
     CALL W-API-NAME USING
           BY REFERENCE W-PKBLOB
           BY REFERENCE W-KERNELPARMS
           BY REFERENCE W-STORAGEKEY
           BY REFERENCE W-INITVECTOR
           BY REFERENCE W-MSGVECTOR
           BY REFERENCE W-SEQNUM
           BY REFERENCE W-DEACTMSG
           BY REFERENCE W-DEACTMSG-LENGTH
           RETURNING W-RETURN

    Return codes

      Table: Return codes (AAL2GenMessageDeactivationICSF)
    CodeMeaningCodeMeaning
    0Success1267Invalid message vector length
    412Invalid checksum (software)1268Invalid message vector version
    413Invalid Base64 format1274Invalid message protocol version
    414Invalid checksum (HSM)1275Invalid message protection type
    900Invalid session context handle1286Invalid payload key pointer
    908HSM key not found1288Invalid serial number prefix
    951Invalid HSM key type for HSM decryption1302AES CTR encryption failed
    1118Unsupported BLOB1307Invalid deactivation message pointer
    1119Unsupported payload key BLOB1308Invalid deactivation message length pointer
    1266Invalid message vector pointer  
    Cet article vous a-t-il été utile ?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Ozzy, facilitant la découverte de connaissances grâce à l’intelligence conversationnelle