In addition to previous post, plain form TPK will be used to encrypt data in client side.
Secondly, I am afraid keys' terminology will confuse my description on my previous post, actually I need 3 keys from HSM. Key2 and Key3 will send from server side to client side over the network. Key2 and Key3 will be encrypted before the transmission. Key3 is encrypted by Key2 and Key2 will be encrypted by Key1, Key1[Key2[Key3]].
Best regards,
Chris.
Secondly, I am afraid keys' terminology will confuse my description on my previous post, actually I need 3 keys from HSM. Key2 and Key3 will send from server side to client side over the network. Key2 and Key3 will be encrypted before the transmission. Key3 is encrypted by Key2 and Key2 will be encrypted by Key1, Key1[Key2[Key3]].
Best regards,
Chris.