Each RSA key pair consists of a private and a public key. For z/OS there can be up to three key pair sets each consisting of three key pairs with lengths of 768, 1024, 2048 bit. For Unix and Windows systems there are two additional key pair sets consisting of two key pairs each in the lengths 3072 and 4096 bit. As of openFT version V12.1C60 these two key lengths can also be used for BS200 systems. When a key pair set is created, new key pairs for each of these lengths are always created.

Public keys are stored under the following name:

SYSPKF.R<key reference>.L<key length>

The storage location is platform-dependent, see the relevant openFT "Installation and Operation" manual.

The key reference is a numerical designator for the version of the key pair. The public key files are text files that are created using the character code of the respective operating system, i.e. by default:

• BS2000 systems: Value of the system parameter HOSTCODE

• z/OS: IBM1047

• Unix systems: ISO8859-1

• Windows systems: CP1252

Private keys are internally administered by openFT.

Comments

For each key pair set, comments can be stored which are written in the first lines of the public key files when a key pair set is created. The comments could, for example, contain the contact information of the FT administrator on duty, the computer name, or similar information that is important for partners. The comments in the editable text file SYSPKF.COMMENT can only be a maximum of 78 characters long. When a key pair set is updated, any subsequently updated comments are taken over from this file into existing public key files.