CMG-DCM / AM - Güralp Systems Limited
CMG-DCM / AM - Güralp Systems Limited
CMG-DCM / AM - Güralp Systems Limited
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
<strong>CMG</strong>-<strong>DCM</strong> Data Communications Module<br />
you can create text files on the local computer and transfer them<br />
to the <strong>AM</strong> module using scp or a similar secure transfer<br />
program.)<br />
6. Change into the CD1.1 transmitter's configuration directory<br />
using<br />
cd /etc/libcd11<br />
The following steps create a key pair and certificate request<br />
within the token, which need to be placed in this directory for<br />
the CD1.1 transmitter to be able to sign outgoing data.<br />
7. Issue the command<br />
spyrus newreq -s filename -i 1 -r slot01.req -p slot01.pub<br />
-x<br />
where filename is the name of the file you created in step 5.<br />
This will generate a certificate request in the file slot01.req<br />
and a public key in the file slot01.pub. The private key is<br />
kept within the token itself, and cannot be extracted from it.<br />
Any attempt to compromise the token will cause it to shut down<br />
and become unusable.<br />
8. The file slot01.req is a certificate request for the key pair<br />
generated. You should send this file by e-mail to the<br />
Certification Authority, so that they can generate a valid<br />
certificate from it.<br />
9. When you receive the certificate, install it in the<br />
/etc/libcd11 directory as slot01.crt. Also create the key<br />
ID file slot01.kid. (The key ID file is simply a text file<br />
containing the key ID as a single decimal number. You can use<br />
any key ID number as long as it is unique for each key. It is used<br />
in the key bucket file, described below.)<br />
10.Now load the certificate into the token using the command<br />
spyrus loadcert -c slot01.crt<br />
The token will check that the certificate matches its own key<br />
pair, and should respond with<br />
info::No index specified searching for matching key<br />
info::Key in slot 1 matches certificate<br />
46 Issue F