Public Key Configuration Task List; Configuring A Local Asymmetric Key Pair On The Local Device; Creating A Local Asymmetric Key Pair - HP 12500 Series Configuration Manual

Public key configuration task list

The configuration tasks enable you to manage the local asymmetric key pairs, and configure the peer
host public keys on the local device. By completing these tasks, your host is ready to work with
applications such as SSH and SSL to implement data encryption/decryption, or digital signature.
Complete these tasks to configure public keys:
Task
Configuring a local
asymmetric key pair on the
local device
Specifying the peer public key on the local device
Configuring a local asymmetric key pair on the
local device

Creating a local asymmetric key pair

Configuration guidelines
When you create an asymmetric key pair on the local device, follow these guidelines:
Create an asymmetric key pair of the proper type to work with a target application.
•
After you enter the command, specify a proper modulus length for the key pair. The following table
•
compares these types of key pairs.
Table 8 A comparison between different types of asymmetric key pairs
Type Number of key pairs
Two key pairs, one server key
pair and one host key pair.
RSA
Each key pair comprises a
public key and a private key.
One key pair, the host key
DSA
pair.
NOTE:
Only SSH1.5 uses the RSA server key pair.
Configuration procedure
To create a local asymmetric key pair:
Creating a local asymmetric key pair
Displaying or exporting the local host public key
Destroying a local asymmetric key pair
Modulus length
•
In non-FIPS mode: 512 to 2048 bits
and defaults to 1024 bits.
•
In FIPS mode: 2048 bits.
•
In non-FIPS mode: 512 to 2048 bits
and defaults to 1024 bits.
•
In FIPS mode: 1024 to 2048 bits
and defaults to 1024 bits.
156
Remarks
Choose one or more
tasks.
Remarks
To achieve high security,
specify at least 768 bits.