Conditional Self-Tests; Triggering Self-Tests; Displaying And Maintaining Fips - HP FlexFabric 5700 Series Security Configuration Manual
Hide thumbs
Also See for FlexFabric 5700 Series:
- Configuration manual (185 pages) ,
- Configuration manual (132 pages) ,
- Configuration manual (125 pages)
Table of Contents
Advertisement
PWCT
Conditional self-tests
A conditional self-test runs when an asymmetrical cryptographic module or a random number generator
module is invoked. Conditional self-tests include the following types:
Pairwise conditional test (PWCT) signature and authentication—The test is run when a DSA or RSA
•
asymmetrical key pair is generated. It uses the private key to sign the specific data, and it then uses
the public key to authenticate the signed data. If the authentication is successful, the test succeeds.
Continuous random number generator test—This test is run when a random number is generated.
•
If two consecutive random numbers are different, the test succeeds. Otherwise, the test fails. This test
can also be run when a DSA/RSA asymmetrical key-pair is generated.
Triggering self-tests
To examine whether the cryptography modules operate correctly, you can trigger a self-test on the
cryptographic algorithms. The triggered self-test is the same as the power-up self-test. If the self-test fails,
the device where the self-test process exists reboots.
To trigger a self-test:
Step
1.
Enter system view.
2.
Trigger a self-test.
Displaying and maintaining FIPS
Execute display commands in any view.
Task
Display the FIPS mode state.
Tests the following algorithms:
•
RSA (signature and authentication).
•
RSA (encryption and decryption).
•
DSA (signature and authentication).
•
ECDSA (signature and authentication).
Command
system-view
fips self-test
389
Command
display fips status
- Quick Links:
- Configuring Local Users
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
