HSM Payhield 9000 Migrate To SSM
214 views
Skip to first unread message
Mostafa Soltani
May 8, 2019, 5:43:40 AM5/8/19
to jPOS Users
Hi
we have a Hsm Payshield 9000
how can export Lmk?
Thanks
igor skljar
May 8, 2019, 7:48:39 AM5/8/19
to jPOS Users
LMKs are secret, internal to the HSM, and do not exist outside of the HSM except as
components or shares held in smartcards.
(payShield 9000 v3.1. General Information Manual. Chapter 3)
(payShield 9000 v3.1. General Information Manual. Chapter 3)
среда, 8 мая 2019 г., 12:43:40 UTC+3 пользователь Mostafa Soltani написал:
Mostafa Soltani
May 9, 2019, 1:31:47 AM5/9/19
to jPOS Users
Thank u so much
Manuel Alcala
May 9, 2019, 1:45:09 AM5/9/19
to jpos-...@googlegroups.com
Mostafa
You want to bring the lmk to other hsm or export the keys encrypted with lmk?
The first is almost impossible, you need to get the lmk components
The second , you need to create one zmk (exporter on source, importer on destination) and transport all the needed keys, at destination, you need to test all transported keys using the key check value
Regards
Manuel
Obtener Outlook para Android
From: jpos-...@googlegroups.com <jpos-...@googlegroups.com> on behalf of Mostafa Soltani <soltani...@gmail.com>
Sent: Thursday, May 9, 2019 12:31:46 AM
To: jPOS Users
Subject: [jpos-users] Re: HSM Payhield 9000 Migrate To SSM
Sent: Thursday, May 9, 2019 12:31:46 AM
To: jPOS Users
Subject: [jpos-users] Re: HSM Payhield 9000 Migrate To SSM
--
--
jPOS is licensed under AGPL - free for community usage for your open-source project. Licenses are also available for commercial usage. Please support jPOS, contact: sa...@jpos.org
---
You received this message because you are subscribed to the Google Groups "jPOS Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jpos-users+...@googlegroups.com.
To post to this group, send email to jpos-...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/jpos-users/df888a63-100b-48ca-a13f-eedbeb7cd663%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
--
jPOS is licensed under AGPL - free for community usage for your open-source project. Licenses are also available for commercial usage. Please support jPOS, contact: sa...@jpos.org
---
You received this message because you are subscribed to the Google Groups "jPOS Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jpos-users+...@googlegroups.com.
To post to this group, send email to jpos-...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/jpos-users/df888a63-100b-48ca-a13f-eedbeb7cd663%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Mostafa Soltani
May 11, 2019, 1:26:48 AM5/11/19
to jPOS Users
Hi
Actuaaly,we have two Hsm payshield with "licence 2.2 a" .Thease HSM have Problem.Those became disconnet for 30 minutes suddenly and again connect.On the other we have a Hsm payshield with 2.2 f licence,This works correctly.
we guess "licence 2.2 a" has problem.Therfore we decided use from SSM
i want know about algorithm Hsm
Can you help me?
On Thursday, May 9, 2019 at 10:15:09 AM UTC+4:30, Manuel Alcala wrote:
Mostafa
You want to bring the lmk to other hsm or export the keys encrypted with lmk?
The first is almost impossible, you need to get the lmk components
The second , you need to create one zmk (exporter on source, importer on destination) and transport all the needed keys, at destination, you need to test all transported keys using the key check value
Regards
Manuel
Obtener Outlook para Android
From: jpos-...@googlegroups.com <jpos-...@googlegroups.com> on behalf of Mostafa Soltani <soltani...@gmail.com>
Sent: Thursday, May 9, 2019 12:31:46 AM
To: jPOS Users
Subject: [jpos-users] Re: HSM Payhield 9000 Migrate To SSM
Thank u so much--
On Wednesday, May 8, 2019 at 2:13:40 PM UTC+4:30, Mostafa Soltani wrote:Hiwe have a Hsm Payshield 9000how can export Lmk?Thanks
--
jPOS is licensed under AGPL - free for community usage for your open-source project. Licenses are also available for commercial usage. Please support jPOS, contact: sa...@jpos.org
---
You received this message because you are subscribed to the Google Groups "jPOS Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jpos-...@googlegroups.com.
To post to this group, send email to jpos...@googlegroups.com.
Victor Salaman
May 11, 2019, 6:27:32 AM5/11/19
to 'Ruchira Biyani' via jPOS Users
The jPOS SSM is meant to be for testing. It is not designed to be a secure solution, and you should never ever use it in production. That being said, you need to ask support from Thales to resolve the problems with your HSMs. In fact, right now you could upgrade to new shiny Payshield 10k platform.
/V
To unsubscribe from this group and stop receiving emails from it, send an email to jpos-users+...@googlegroups.com.
To post to this group, send email to jpos-...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/jpos-users/36afe14b-8491-46c4-8127-e46202b29ba8%40googlegroups.com.
Ahmed Marzouk
May 12, 2019, 5:19:12 AM5/12/19
to jpos-...@googlegroups.com
Hi mostafa,
LMK is never exported from the HSM, This is a security concern and because it is designed for that, review FIPS 140-2,3 specs.
If you need to migrate to another HSM, you can upload your LMK over the new HSM with the key components (smart cards) you have created in the current HSM configuration.
Best Regards,
Ahmed S. Marzouk
To view this discussion on the web visit https://groups.google.com/d/msgid/jpos-users/CALK1SyysK6t0Whw4pZNYOnL%2BZem%2BiRaibsF1ah%3DqmVnSKqA0Aw%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.
Eng. Ahmed Said Marzouk
002 01112606644
002 01112606644
George Perlington
Jul 17, 2019, 11:39:15 AM7/17/19
to jPOS Users
Hi Mostafa how does possible to contact you? Whats your email ? Kindly George
George Perlington
Jul 17, 2019, 11:39:15 AM7/17/19
to jPOS Users
Hi Ahmed how possible to contact you George
To post to this group, send email to jpos-...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/jpos-users/36afe14b-8491-46c4-8127-e46202b29ba8%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
--
--
jPOS is licensed under AGPL - free for community usage for your open-source project. Licenses are also available for commercial usage. Please support jPOS, contact: sa...@jpos.org
---
You received this message because you are subscribed to the Google Groups "jPOS Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jpos-...@googlegroups.com.
To post to this group, send email to jpos-...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/jpos-users/CALK1SyysK6t0Whw4pZNYOnL%2BZem%2BiRaibsF1ah%3DqmVnSKqA0Aw%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.
Ahmed Marzouk
Jul 17, 2019, 11:43:00 AM7/17/19
to jpos-...@googlegroups.com
To unsubscribe from this group and stop receiving emails from it, send an email to jpos-users+...@googlegroups.com.
To post to this group, send email to jpos-...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/jpos-users/78e3244f-737e-46aa-90ce-e8ce1c904d5a%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Mostafa Soltani
Jul 18, 2019, 1:03:28 AM7/18/19
to jPOS Users
Hi,
My Gmail is soltani...@gmail.com
Thank u
Reply all
Reply to author
Forward
0 new messages