1. Manuals
  2. Brands
  3. Oracle Manuals
  4. Storage
  5. StorageTek T10000D
  6. Manual

Oracle StorageTek T10000D Manual page 27

Non-proprietary security policy
Hide thumbs
Table of Contents

Advertisement

Algorithm
AES 256-bit ECB mode (Used with OKM)
AES Key Wrap 256-bit (Used with OKM)
AES 256-bit CCM mode
AES 128-bit CTR mode
AES 128-bit CBC mode
33
AES 256-bit CBC
mode (TLS 1.0/1.1
implementation)
AES 256-bit ECB mode
(DCCM hardware implementation)
AES 256-bit CCM mode
(DCCM hardware implementation)
34
SHA
-1
SHA-1 (TLS 1.0/1.1 implementation)
SHA-256
35
HMAC
SHA-1 (TLS 1.0/1.1 implementation)
HMAC SHA-1
32
Media Keys are a defined CSP. See Table 9 in VE07.03.01
33
CBC – Cipher Block Chaining
34
SHA – Secure Hash Algorithm
35
HMAC – (Keyed-) Message Authentication Code
This document may be freely reproduced and distributed whole and intact including this Copyright notice.
Provides AES in ECB mode as used to unwrap
AES Media Keys
(Cert # 4047)
Unwrap AES Media Keys being sent from the
OKM (Used with AES ECB Cert #4047)
AES in CCM mode as used with AES in ECB
mode with Cert # 4039
AES in CTR mode (with AES-ECB-128 as the
forward cipher funtion) used in remote SSH
sessions.
AES in CBC mode used in remote SSH
sessions.
AES in CBC mode used in a TLS session
between the ETD and OKM
AES in ECB mode as used in hardware AES
CCM encryption with Cert # 2760
AES in CCM mode as used with AES in ECB
mode Cert # 2760
Provides hashing for multiple services
including, digital signature verification (Used
with HMAC SHA-1 (Cert # 2636), RSA 2048-
bit (Cert # 2074)); User data hashing; Used as
part of the SSH KDF (Cert #866).
Used as part of the TLS 1.0/1.1 Key Derivation
Function; Used with HMAC SHA-1 (TLS
1.0/1.1 implementation Cert # 867).
Provides hashing for multiple services
including, digital signature verification (Used
with RSA 2048 (Cert # 2074)) and as part of
the SSH Key Derivation Function ) (Used with
Cert #866). SHA-256 is also used with RSA
2048 Signature Generation and ECDSA
Signature Generation (Cert #905).
Provides integrity during a TLS session; Used
with SHA-1 (Cert #: 3331)
Provides integrity during a SSH session; Used
with SHA-1 (Cert #3330)
© Copyright 2017 Oracle Corporation
Implementation Description
32
being sent from the OKM.
Certificate
Number
4047
4047
4039
4039
4039
4040
2760
2760
3330
3331
3330
2637
2636
Page 27 of 51

Advertisement

Table of Contents
loading

Related Manuals for Oracle StorageTek T10000D

Related Products for Oracle StorageTek T10000D

Table of Contents