Multi-step process to wrap/unwrap an existing AES DATA key with AES IMPORTER/EXPORTER keys derivedfrom an ECC Key Pair.1. On each LPAR, generate an ECC key pair using CSNDPKB and CSNDPKG GENECC2.rexx | ViewDetails2. On each LPAR, use CSNDPKB to build an ECC public key from the other LPAR's public keyIMPRTEC2.rexx | View Details3. On the sending LPAR, use CSNBKTB2 and CSNDEDH to derive an AES EXPORTER key from thereceiver's ECC public key and it's own ECC private key DRVAESXP.rexx | View Details4. On the receiving LPAR, use CSNBKTB2 and CSNDEDH to derive an AES IMPORTER key from thesender's ECC public key and it's own ECC private key. DRVAESMP.rexx | View Details1. This ECDH key exchange operation independently produces the same key value as the sendingLPAR.2. You now have a shared transporter (EXPORTER/IMPORTER) key on both LPARs5. On the sending LPAR, use CSNBKRR to read the existing AES DATA key from the CKDS (or invokeCSNBKGN to generate a new AES DATA key to transport) and call CSNBKTR2 to translate the key to anAES CIPHER key. Then call CSNDSYX to export the AES CIPHER key under the derived AESEXPORTER key. EXPAES32.rexx | View Details6. On the receiving LPAR, use CSNDSYI to import the AES CIPHER key from under the AES EXPORTERkey and call CSNBKTR2 to translate the key back to an AES DATA key and store the key in the CKDS.IMPAES32.rexx | View DetailsDetailed Techdoc on Transporting AES Data Keys... http://www-03.ibm.com/support/techdocs/atsmastr.nsf/WebIndex/WP102736