Operations
Introduction
This document provides links to full descriptions for all of the operations in the API. The operations are defined in a format-neutral language where types can easily and implicitely be translated to the specific operation implementation language used.
Overview
| Operation | Opcode |
|---|---|
| Ping | 0x0001 |
| PsaGenerateKey | 0x0002 |
| PsaDestroyKey | 0x0003 |
| PsaSignHash | 0x0004 |
| PsaVerifyHash | 0x0005 |
| PsaImportKey | 0x0006 |
| PsaExportPublicKey | 0x0007 |
| ListProviders | 0x0008 |
| ListOpcodes | 0x0009 |
| PsaAsymmetricEncrypt | 0x000A |
| PsaAsymmetricDecrypt | 0x000B |
| PsaExportKey | 0x000C |
| PsaGenerateRandom | 0x000D |
| ListAuthenticators | 0x000E |
| PsaHashCompute | 0x000F |
| PsaHashCompare | 0x0010 |
| PsaAeadEncrypt | 0x0011 |
| PsaAeadDecrypt | 0x0012 |
| PsaRawKeyAgreement | 0x0013 |
| PsaCipherEncrypt | 0x0014 |
| PsaCipherDecrypt | 0x0015 |
| PsaMacCompute | 0x0016 |
| PsaMacVerify | 0x0017 |
| PsaSignMessage | 0x0018 |
| PsaVerifyMessage | 0x0019 |
| ListKeys | 0x001A |
| ListClients | 0x001B |
| DeleteClient | 0x001C |
| AttestKey | 0x001E |
| PrepareKeyAttestation | 0x001F |
| CanDoCrypto | 0x0020 |
Find here the current level of support of those operations in Parsec.
Core Operations
Core operations are non-cryptographic operations supported by the core provider. Set the
provider field of the request header to 0 (0x00) to invoke these operations.
Some operations are reserved for administrators. They are marked below with "(admin)". These
operations can only be executed by a set of application names chosen by the Parsec administrator. If
user applications try to execute those operations, a AdminOperation response status error code
will be returned.
Service Health
Service Configuration
- ListProviders
- ListOpcodes
- ListAuthenticators
- ListKeys
- ListClients (admin)
- DeleteClient (admin)
PSA Crypto Operations
These operations are all derived from equivalent function definitions in the PSA Crypto API Specification. Most of the documentation in this book directly come from the specification.
Key Management
Message Digests
Message Authentication Codes (MAC)
Unauthenticated Ciphers
Authenticated Encryption with Associated Data (AEAD)
Asymmetric Signature
Asymmetric Encryption
Key Agreement
Random Number Generation
Other operations
These operations are not derived from PSA Crypto, but nonetheless perform tasks with backing from hardware tokens.
Key attestation
(EXPERIMENTAL) These operations are in an experimental phase. No guarantees are offered around the stability of their contracts or abstract interfaces.
Capability discovery
(EXPERIMENTAL) These operations are in an experimental phase. No guarantees are offered around the stability of their contracts or abstract interfaces.
Copyright 2019 Contributors to the Parsec project.