bvimport Utility 

 

The BlackVault Hardware Security Module (HSM) securely generates and stores cryptographic keys. If an RSA or ECC key already exists outside of the BlackVault HSM and you would like it to be stored inside the BlackVault HSM a key import must be performed. Included in the BlackVault Setup CD is a tool called bvimport, this is installed when you run the installer and is the utility to run when a key import is desired.

The bvimport utility only supports RSA and ECC keys, and they must be in pem format.

 

Provided that the key is in pem format this is how you import a key:

  1. Open a terminal.
  2. Run the command bvimport with the following arguments:
    1. If importing just a key use the arguments “-key KEYFILE -keyname KEYNAME”
      1. Where KEYFILE is the location of the .pem formatted key.
      2. And KEYNAME is the name associated with the key to easily identify it in the BlackVault HSM
    2. If importing just a certificate use the arguments “-cert CERTFILE -certname CERTNAME”
      1. Where CERTFILE is the location of the .pem formatted certificate.
      2. And CERTNAME is the name associated with the certificate to easily identify it in the BlackVault HSM
    3. If importing both a certificate and a key use the arguements “-keyandcert KEYANDCERTFILE -keyname KEYNAME -certname CERTNAME”
      1. Where KEYANDCERTFILE is the location of the .pem formatted key and certificate file
      2. CERTNAME is the name associated with the certificate to easily identify it in the BlackVault HSM
      3. And KEYNAME is the name associated with the key to easily identify it in the BlackVault HSM
  3. If the pem was encrypted with a password bvimport asks for the password, enter it when needed.
  4. Once the command line returns, the key is imported successfully.

 

 


Engage logo 990000 rev 2.000
9565 Soquel Drive Dr,
Aptos, CA 95003
 
Telephone: +1-831-688-1021
Toll Free : +1-877-ENGAGE4
Designed, Fabricated, and Assembled
in America icon
Supported Worldwide