Common Data Security Architecture (CDSA) White Paper
30 Chapter1
Common Data Security Architecture (CDSA) White Paper
Cryptography Service Provider (CSP) API
Accepts as input a login password and logs the user into the CSP. CSPs are not required to
support a login model. If a login model is supported, the CSP may request additional
passwords at any time during the period of service. The HP-UX bundled CSP supports logins.
CSP_Logout ()
The caller is logged out of the current login session with the designated CSP.
CSP_ChangeLoginPassword ()
Accepts as input a handle to a CSP, the callers old login password for that CSP, and the callers
new login password. The old password is replaced with the new password. The callers
current login is terminated and another login session is created using the new password.
Extensibility Functions
CSP_PassThrough ()
Performs the CSP module-specific function indicated by the operation ID. The operation ID
specifies an operation which the CSP has exported for use by an application or module. Such
operations are specific to the CSP module. The operation IDs supported by the HP-UX
bundled CSP and the examples of how to use them are found in Appendix C, “Code Examples.”
Supported Functions and Algorithms
The HP Praesidium Worldwide Importable CSP supports the following functions and
algorithms:
• Random Number Generation
Algorithm ID:
— CSSM_ALGID_SHARandom
• Message Digest
Algorithm IDs:
— CSSM_ALGID_MD5
— CSSM_ALGID_SHA1
• Message Authentication Code
Algorithm IDs:
— CSSM_ALGID_MD5
— CSSM_ALGID_SHA1
• Symmetric Key Generation