Sun oracle Crypto Accelerator 6000 Board Manuals

Table of Contents

3

Regulatory Compliance Statements

15

Preface

19

Related Documentation
20

1 Product Overview

23

Product Features
23
Hardware Overview
27
- LED Displays
  28
- Direct Input Devices
  29
  - Serial Port
    29
  - USB Port
    30
- Dynamic Reconfiguration and High Availability
  31
- Load Sharing
  31
Hardware and Software Requirements
32

2 Installing the Sun Crypto Accelerator 6000 Board

33

Handling the Board
34
Installing the Board on Oracle Solaris Platforms
34
- Install the Hardware
  34
Installing the Sun Crypto Accelerator 6000 Software with the Install Script
36
- Install the Software with the Install Script
  36
Directories and Files for Oracle Solaris Platforms
40
Removing the Sun Crypto Accelerator 6000 Software on Oracle Solaris Platforms with the Remove Script
41
- Remove the Software with the Remove Script on the CD-ROM
  41
- For Oracle Solaris 11, Remove the Software with the Remove Script
  42
Installing the Software on Oracle Solaris Platforms Without the Installation Script
43
- Install the Software Without the Install Script
  43
Removing the Software on Oracle Solaris Platforms Without the Remove Script
45
- Delete Existing Keystores
  45
- Remove the Software Without the Remove Script
  46
Installing the Sun Crypto Accelerator 6000 Board on Linux Platforms
46
Directories and Files for Linux Platforms
49
Removing the Sun Crypto Accelerator 6000 Software on Linux Platforms
50
- Removing the Sun Crypto Accelerator 6000 Software with the Remove Script
  50
  - Remove the Software with the Remove Script
    51
  - Remove the Software Without the Remove Script
    51
Migrating Back to Version 1.0 from 1.1
52
- Back up the 1.0 Keystore
  52
- Restore the 1.0 Software and Firmware
  52

3 Administering the Sun Crypto Accelerator 6000 Board

55

4 Configuring Centralized Keystores

119

5 Developing and Administering Financial Services

141

Financial Service Components Overview
142
Financial Services Library Initialization
143
Session Shutdown Function Fs_Session_Close()
146
Financial Services Data Types
146
Key Management Overview
147
- Key Separation and Compartmentalization of Risk
  147
- Permitted Key Forms
  148
- Direct Key Loading
  148
  - Enable the MFK
    148
  - Load the MFK
    148
  - Change the MFK
    149
  - Load the Keks
    149
Key Management Functions
149
PIN Processing Functions
155
- PIN Block Formats
  156
  - ANSI/ISO Format 0
    156
  - ISO Format 1
    157
- PIN Calculation Methods
  157
  - Visa PVV Method
    157
  - IBM-3624 Method
    158
- Personal Account Number
  158
- Pin
  158
- Pvki
  159
- PIN Verify Function Fs_Pin_Verify()
  159
  - PIN Translate Function Fs_Pin_Translate()
    160
- Credit Card Processing Overview
  162
  - Financial Services Library Function Fs_Card_Verify(3)
    162
- Enabling the Financial Services Feature
  163
  - Enable Financial Services
    163
- Administering Financial Services
  164
  - Administrative Commands
    164
  - Direct Input Device
    164
  - Financial Services Security Officers
    164
  - Setting Financial Services Mode
    164

6 Developing PKCS#11 Applications for Use with the Sun Crypto Accelerator 6000 Board

167

Board Administration
168
Slot Descriptions
169
- Keystore Slot
  169
- Sun Metaslot
  170
  - Configuring Sun Metaslot to Use the Sun Crypto Accelerator 6000 Keystore
    170
  - Configuring Secure Failover for Sun Metaslot
    171
- Hardware Slot
  172
PKCS#11 and FIPS Mode
173
Developing Applications to Use PKCS#11
174
- Sun Crypto Accelerator 6000 PKCS#11 Implementation Specifics
  174
  - Token Objects
    174
  - Random Number Generator
    175
  - Supported and Unsupported Functions
    175
  - Software Attributes
    176
  - Software Error Codes
    177
  - Token Object Handles
    178
Developing PKCS#11 Applications for Use with the Sun Crypto Accelerator 6000 Board on Linux Platforms
178

7 Installing and Configuring Sun Java System Server Software

179

8 Installing and Configuring Apache Web Server Software

211

9 Diagnostics and Troubleshooting

219

Sun Crypto Accelerator 6000 Board Specifications

225

Index

261

Sun Oracle Crypto Accelerator 6000 Board Manuals

Sun Oracle Crypto Accelerator 6000 Board User Manual (266 pages)

Table of Contents

Regulatory Compliance Statements

Preface

1 Product Overview

2 Installing the Sun Crypto Accelerator 6000 Board

3 Administering the Sun Crypto Accelerator 6000 Board

4 Configuring Centralized Keystores

5 Developing and Administering Financial Services

6 Developing PKCS#11 Applications for Use with the Sun Crypto Accelerator 6000 Board

7 Installing and Configuring Sun Java System Server Software

8 Installing and Configuring Apache Web Server Software

9 Diagnostics and Troubleshooting

Sun Crypto Accelerator 6000 Board Specifications

Index

Related Products

Sun Oracle Categories