AAL2ProcVerifySignatureEsRpl

Function prototype

aat_int32 AAL2ProcVerifySignatureEsRpl(
                                       aat_byte        *InReply,
                                       aat_int32       *ReplySize,
                                       TDigipassBlob   *DPData,
                                       aat_ascii       *aReturnHostCode,
                                       aat_int32       *ReturnHostCodeLen);

Description

This function processes a reply from the HSM to a command generated with either AAL2GenVerifySignatureEsCmd.

The signature validation with enhanced security on the HSM is identical to the functionality available with the Authentication Suite Server SDK Software e-Signature Validation Service. For information on the associated functions, refer to the Authentication Suite Server SDK C-C++ Programmer's Guide.

Parameters

Table: Parameters (AAL2ProcVerifySignatureRpl)
Type	Name	Use	Description
aat_byte *	InReply	I	Up to 251 bytes that contain the VERIFY SIGNATURE command type and the output data from the verify signature function on the HSM: Command type - 2 bytes An authenticator application BLOB - 192 bytes Return code - 4 bytes Confirmation code length - 4 bytes Confirmation code - up to 17 characters Plus 32 bytes for Authentication Suite Server SDK internal use.
aat_int32	ReplySize	I	The length of the InReply message.
TDigipassBlob *	DPData	O	Digipass description data block. Upon return from the function call, this data block must be rewritten to the application database to reflect the changes.
aat_ascii *	ReturnHostCode	O	String of up to 17 numeric or hexadecimal characters, left-justified, null-terminated, or right-padded with spaces. This is the confirmation code generated by Authentication Suite Server SDK. Leave NULL if not required.
aat_int32 *	ReturnHostCodeLen	I/O	Pointer to a long integer that in input contains the size of the ReturnHostCodeOut buffer, and in output contains the real length of the generated return host code. Leave NULL if not required.

Return codes

Table: Return codes (AAL2ProcVerifySignatureEsRpl)
Code	Meaning	Code	Meaning
0	Success	1009	Invalid TLV total length
10001	Success with context warning[1]	1018	Invalid TLV item pointer
10002	Success with user warning[1]	1019	Missing mandatory TLV item
10003	Success with user & context warning[1]	1025	Data buffer too small
10004	Success with platform warning[1]	1103	Unlock Version 2 not supported
10005	Success with platform & context warning[1]	1116	Response check digit not allowed
10006	Success with platform & user warning[1]	1117	Challenge check digit not allowed
10007	Success with platform & user & context warning[1]	1118	Unsupported BLOB
1	Signature not verified	-101	Challenge too short
132	Unsupported token type	-102	Challenge too long
203	Sign error threshold reached	-103	Challenge check digit wrong
204	Duplicate signature found	-105	Challenge minimum length not allowed
205	Inactive days reached	-106	Challenge maximum length not allowed
206	Chronological signature error	-107	Challenge number wrong
208	Application disabled	-108	Challenge character invalid
272	Invalid wrapped key	-153	Server public key too long
412	Invalid checksum (software)	-201	Response length out of bounds
413	Invalid Base64 format	-202	Response too short
414	Invalid checksum (HSM)	-203	Response too long
510	Invalid Digipass data pointer	-204	Response check digit wrong
701	Invalid input buffer pointer	-205	Response character not decimal
910	Invalid HSM command in reply	-206	Response character not hexadecimal
912	StatusHSM invalid BLOB status	-207	Response character set not specified
913	Invalid HSM key property	-1501	Memory allocation failed
951	Invalid HSM key type for HSM decryption

Specific score-based authentication code (see Score-based DIGIPASS)

AAL2ProcVerifySignatureEsRpl

Function prototype

Description

Parameters

Return codes

Resources