/AWS1/CL_PCYIMPORTTR34KEYBLOCK

Parameter information for key material import using the asymmetric TR-34 key exchange method.

CONSTRUCTOR

IMPORTING

Required arguments:

iv_certauthoritypublickeyid TYPE /AWS1/PCYKEYARNORKEYALIASTYPE /AWS1/PCYKEYARNORKEYALIASTYPE

The KeyARN of the certificate chain that signs the signing key certificate during TR-34 key import.

iv_signingkeycertificate TYPE /AWS1/PCYCERTIFICATETYPE /AWS1/PCYCERTIFICATETYPE

The public key component in PEM certificate format of the private key that signs the KDH TR-34 WrappedKeyBlock.

iv_importtoken TYPE /AWS1/PCYIMPORTTOKENID /AWS1/PCYIMPORTTOKENID

The import token that initiates key import using the asymmetric TR-34 key exchange method into Amazon Web Services Payment Cryptography. It expires after 30 days. You can use the same import token to import multiple keys to the same service account.

iv_wrappedkeyblock TYPE /AWS1/PCYTR34WRAPPEDKEYBLOCK /AWS1/PCYTR34WRAPPEDKEYBLOCK

The TR-34 wrapped key block to import.

iv_keyblockformat TYPE /AWS1/PCYTR34KEYBLOCKFORMAT /AWS1/PCYTR34KEYBLOCKFORMAT

The key block format to use during key import. The only value allowed is X9_TR34_2012.

Optional arguments:

iv_randomnonce TYPE /AWS1/PCYEVENHEXLENGTHBETWEE00 /AWS1/PCYEVENHEXLENGTHBETWEE00

A random number value that is unique to the TR-34 key block generated using 2 pass. The operation will fail, if a random nonce value is not provided for a TR-34 key block generated using 2 pass.

---

Queryable Attributes

CertificateAuthorityPublicKeyIdentifier

The KeyARN of the certificate chain that signs the signing key certificate during TR-34 key import.

Accessible with the following methods

Method	Description
GET_CERTAUTHORITYPUBLICKEYID()	Getter for CERTAUTHORITYPUBLICKEYID, with configurable defau
ASK_CERTAUTHORITYPUBLICKEYID()	Getter for CERTAUTHORITYPUBLICKEYID w/ exceptions if field h
HAS_CERTAUTHORITYPUBLICKEYID()	Determine if CERTAUTHORITYPUBLICKEYID has a value

SigningKeyCertificate

The public key component in PEM certificate format of the private key that signs the KDH TR-34 WrappedKeyBlock.

Accessible with the following methods

Method	Description
GET_SIGNINGKEYCERTIFICATE()	Getter for SIGNINGKEYCERTIFICATE, with configurable default
ASK_SIGNINGKEYCERTIFICATE()	Getter for SIGNINGKEYCERTIFICATE w/ exceptions if field has
HAS_SIGNINGKEYCERTIFICATE()	Determine if SIGNINGKEYCERTIFICATE has a value

ImportToken

The import token that initiates key import using the asymmetric TR-34 key exchange method into Amazon Web Services Payment Cryptography. It expires after 30 days. You can use the same import token to import multiple keys to the same service account.

Accessible with the following methods

Method	Description
GET_IMPORTTOKEN()	Getter for IMPORTTOKEN, with configurable default
ASK_IMPORTTOKEN()	Getter for IMPORTTOKEN w/ exceptions if field has no value
HAS_IMPORTTOKEN()	Determine if IMPORTTOKEN has a value

WrappedKeyBlock

The TR-34 wrapped key block to import.

Accessible with the following methods

Method	Description
GET_WRAPPEDKEYBLOCK()	Getter for WRAPPEDKEYBLOCK, with configurable default
ASK_WRAPPEDKEYBLOCK()	Getter for WRAPPEDKEYBLOCK w/ exceptions if field has no val
HAS_WRAPPEDKEYBLOCK()	Determine if WRAPPEDKEYBLOCK has a value

KeyBlockFormat

The key block format to use during key import. The only value allowed is X9_TR34_2012.

Accessible with the following methods

Method	Description
GET_KEYBLOCKFORMAT()	Getter for KEYBLOCKFORMAT, with configurable default
ASK_KEYBLOCKFORMAT()	Getter for KEYBLOCKFORMAT w/ exceptions if field has no valu
HAS_KEYBLOCKFORMAT()	Determine if KEYBLOCKFORMAT has a value

RandomNonce

A random number value that is unique to the TR-34 key block generated using 2 pass. The operation will fail, if a random nonce value is not provided for a TR-34 key block generated using 2 pass.

Accessible with the following methods

Method	Description
GET_RANDOMNONCE()	Getter for RANDOMNONCE, with configurable default
ASK_RANDOMNONCE()	Getter for RANDOMNONCE w/ exceptions if field has no value
HAS_RANDOMNONCE()	Determine if RANDOMNONCE has a value