iTP Secure WebServer System Administrator's Guide (iTPWebSvr 5.1+)
Integrating the WebSafe2 Internet Security
Processor (WISP)
iTP Secure WebServer System Administrator’s Guide—522659-001
5-10
Generating the Public/Private Key Pair and
Obtaining the Certificate
e. Select the MFK.
f. Enter input variant 0.
g. Create and record the left portion of the clear text. You can enter your own clear
KEK or have the SCT generate one for you.
h. Record the left portion of the cryptogram.
i. Create and record the right portion of the clear text. You can enter your own
clear KEK or have the SCT generate one for you.
j. Record the right portion of the cryptogram.
When you finish the procedure, the SCT displays the check digits for the whole
cryptogram.
The key you create by using this procedure is used later to encrypt the public/private key
pair when it is transmitted to the Compaq system.
Example
The following SCT excerpts show how the double-length text/cryptogram pair is built.
The excerpts begin at the point where you have created (or had the SCT generate) the
left portion of the clear text:
F445 DF43 OK?
7980 97A1 630F ---- Left part of clear text
20F6 4794 CkDig
70CC 73F2 630F ---- Left part of cryptogram
A420 43A7 OK?
0B4F 8A61 7F6F ---- Right part of clear text
0325 C682 CkDig?
4FF0 D6E2 7F6F ---- Right part of cryptogram
Whole Key
Check digit: XXXX
Step 2. Generating a Public/Private Key Pair and a Certificate
Request
When used with WebSafe2 encryption, the iTP Secure WebServer can only use a
public/private key pair generated by the WISP. You use the keyadmin utility to cause the
WISP to generate a public/private key pair and to generate a certificate request
containing the public key. The syntax with the required arguments is shown in the
following example. You may enter the arguments in any order.