Host Protocols Direct Protocol ATCRYPTO class GET CSR
April 13, 2023 at 2:39 AMGET CSR instruction
Role
This instruction asks the device to create a X509 Certificat Signing Request (CSR) for the given key, using an intrinsic subject.
Access condition
Depending on the configuration-defined access conditions and on the type of host interface (Local / Remote), this instruction may either be freely usable or restricted to authenticated communications.
Command
| Field | Value |
|---|---|
| CLA | 59 (ATCRYPTO) |
| INS | 4E |
| Data byte 0 | Key index (00 to 0D) |
| Data byte 1 | CSR subject mode |
CSR subject mode
This is a bitmap
| Binary value | Description |
|---|---|
b-000 ---- |
OU=SpringCore |
b-001 ---- |
OU=SpringCore Direct |
b-010 ---- |
OU=SpringCore Messaging |
b-100 ---- |
OU=SpringCore Servers |
b-101 ---- |
OU=SpringCore Clients |
b---- -001 |
CN=<Serial Number> |
b---- -101 |
CN=<Serial Number>.<Key Number> |
b---- -010 |
CN=<Hardware ID> |
b---- -110 |
CN=<Hardware ID>.<Key Number> |
If CSR subject mode byte is not set or 00, the subject is
-
OU=SpringCore,CN=<Serial number>.<Key index>for keys00to09, -
OU=SpringCore Direct,CN=<Serial number>for key0A, -
OU=SpringCore Messaging,CN=<Serial number>for key0B, -
OU=SpringCore Servers,CN=<Serial number>for key0C, -
OU=SpringCore Clients,CN=<Serial number>for key0D.
Response
| Field | Value |
|---|---|
| CLA | 59 (ATCRYPTO) |
| STA | 00 |
| Data bytes 0..N | CSR |