Table of Contents
Advertisement
2.4 Roles and Services
The StorageTek T10000D Tape Drive cryptographic module provides two roles
which operators may assume:
Cryptographic Officer (CO)
User
Each role is assumed implicitly by an operator and is determined by the service
which the operator is executing. The ETD supports up to twelve concurrent
operators. Each connection to the ETD is logically separated by the module by
unique session keys.
Each role, and the services available to them in each Approved mode, is detailed
in the sections below. Please note that the keys and Critical Security Parameters
(CSPs) listed in the tables indicate the type of access required using the following
notation:
R – Read: The item is read or referenced by the service.
W – Write: The CSP is established, generated, modified, or zeroized.
X – Execute: The CSP is used within an Approved or Allowed security
2.4.1 Crypto-Officer Role
The CO is in charge of the initial configuration of the StorageTek T10000D Tape
Drive which includes placing the module into one of the modes of operations. A
list of services available to the CO, and the Approved mode the service is
available in, is provided in Table 3.
This document may be freely reproduced and distributed whole and intact including this Copyright notice.
function.
© Copyright 2017 Oracle Corporation
Page 20 of 51
Advertisement
Table of Contents
