Table of Contents
Advertisement
Service
Combine Key
Set LED State
Note 1
The key for these commands is input through the PCI bus (data input interface)
=
Note 2
This is a PKCS 12 method for deriving a 3DES key from a password, salt and
=
iteration count.
Note 3
The Exponentiation Using CRT and Exponentiation functions are generic math
=
functions; all parameters are input through the PCI interface (data input
interface).
Note 4
When operating in the FIPS140-1 mode, it is not possible for secret keys, private
=
keys or critical security parameters to cross the PCI bus without being wrapped
(encrypted) using the Key-Wrapping Key.
Note 5
User Login is the process that takes the board from an unauthenticated state to
=
the authenticated state. Only one user may be authenticated at a particular time.
Consequently, the User Login process cannot be started from the authenticated
state. Nonetheless, the User Login process cannot be completed successfully
without authentication.
Note 6
This command is used for generating the key-wrapping-key.
=
Note 7
When the board is in the zeroized state, it is possible to for an unauthenticated
=
user to uninitialize the board.
Note 8
These operations must access stored cryptographic keys. The keys may not be
=
input through the PCI interface.
User Guide
FIPS140-1 Level 3 Mode
Not
User
SO
authen
Role
Role
ticated
NO
YES
YES
YES
YES
YES
Non- FIPS140-1 Mode
Not
User
SO
authen
Role
Role
ticated
NO
YES
YES
YES
YES
YES
9.0 Roles and Services
SRDIs
Accessed
and written
to trusted
interface)
KWK
(created),
two
KWKShare
s (read from
trusted
interface)
None.
April 2013
233
Advertisement
Table of Contents
