Equivalent of findAllKeys in SDK 5



As described in CloudHSM Management Utility (CMU), which belongs to SDK 3, there is a command findAllKeys that, if '<key hash (0/1)>' parameter is given the value of 1, conveniently returns the 'Key Hash', which I need to obtain because of regulatory requirements.

Is there an equivalent of this command in SDK 5?

Best regards -

asked 5 months ago149 views
1 Answer
Accepted Answer

Hello there,

From the description I understand that you are seeking an alternative for findAllKeys command in order to fetch the key hash using CloudHSM CLI that comes with SDK5.

I would like to mention that with respect to the CLI there is currently no option at this point to fetch the key hash however, as for SDK5 you can look at PKCS11 library and use the attribute to call the HASH values. [1]

Else as a workaround you can also try launching another EC2 instance with SDK3 installed for that which you need the CMU only to use the findAllKeys , for ‘<key hash (0/1)> 'option.

In addition to that, please keep an eye on the What's New Page[2] and AWS Blogs[3] to know more about future releases.

I hope that the above information helps to address your concern.

Reference links:

[1]- https://github.com/aws-samples/aws-cloudhsm-pkcs11-examples/blob/master/src/attributes/attributes.c

[2]. What's New: https://aws.amazon.com/new/

[3]. AWS Blogs: https://aws.amazon.com/blogs/aws/

answered 5 months ago
  • Thank you, Divyansha_D, for this helpful response.

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions