Creating a Pre-shared Key and Binding It to the Master Key

AI-VAULT can create a pre-shared key for inference containers and credentials of AI-VAULT encryption and decryption requests.

• Unbinding is not supported. To unbind a pre-shared key, you have to delete the pre-shared key.
• A password is required for creating a pre-shared key. The password is used to encrypt the pre-shared key. The ciphertext of a pre-shared key is returned after it is created. Properly keep the password and the ciphertext of the pre-shared key.
• In the inference container, enter the ciphertext and the decryption password of the pre-shared key.
• A master key can be bound to only one pre-shared key. They are in the one-to-one match. A pre-shared key is bound to a master key when it is created.

1. Call the API to create a pre-shared key. Set the URL and headers by referring to Creating a Pre-Shared Key.
2. Configure a request example.

   POST https://ip:port/AIVAULT/v1/createPSK
   {
       "PSKName":"test",
       "MKName":"test",
       "PSKRemarks":"test",
       "Password":"******"
   }

3. Send a request for creating a pre-shared key and obtain the returned value.