Menu
I want to know in brief about Zone Master Key or Zone Control Master Key in Hardware/Host Security Module.Can someone explain please?
443
Zone Master Key(ZMK) is just another Des key. It is used to transfer keys between HSMs.
HSM <-> Zone <-> HSM
If you want to transfer a key between HSMs you have to have the same ZMK in each HSM. Transferred keys are encrypted under ZMK outside of HSM so ZMK is an important key and it is generally transferred between HSMs in 3 component form. Firstly generate a ZMK key, Export ZMK in 3 components, and send those components to other HSM with 3 different key officers. When key officers imported those 3 components to other Hsm you are ready to send your keys to other HSM. You export your key under this ZMK and send your key (XKeyUnderZMK) key to another HSM. They could import your key to their HSM because they have the same ZMK.
150
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
