CSR :
|
|
Duplicate :
|
|
Duplicate :
|
SunPKCS11 provider "translates" the provided SecretKey for Hmac crypto service, i.e. takes a java SecretKey object, extracts its key bytes and convert it into a CKK_GENERIC_SECRET key. For HSM or scenarios where the key bytes need to be from the underlying PKCS11 library, it requires SunPKCS11 provider to support the CKM_GENERIC_SECRET_KEY_GEN mechanism and provide a KeyGenerator crypto service.
|