Section C Table IV

**Table IV. Service Routine to Security Relevant Data Items Matrix**
Service	Service Routine	Security Relevant Data Item	Read Access	Write Access
Certificate Storage and Retrieval	AddCertToPermDB()	CERTCertDBHandle	X	X
		CERTCertificate	X	X
		CERTCertTrust	X	X
		certDBEntryCert	X	-
	CERT_ClosePermCertDB()	CERTCertDBHandle	X	X
	SEC_FindPermCertByKey()	CERTCertDBHandle	X	X
		SECItem	X	X
		certDBEntryCert	X	-
	SEC_OpenPermCertDB()	CERTCertDBHandle	X	X
	SEC_OpenPermCertDB()	SECStatus	X	-
	SEC_DeletePermCertificate()	CERTCertDBHandle	X	X
		CERTCertificate	X	X
		SECStatus	X	-
	SEC_TraversePermCerts()	CERTCertDBHandle	X	X
	SEC_TraversePermCerts()	SECStatus	X	-
Digital Signatures	DSA_SignDigest()	DSAPrivateKey	X	-
	DSA_SignDigest()	SECStatus	X	-
	DSA_VerifyDigest()	DSAPublicKey	X	-
	DSA_VerifyDigest()	SECStatus	X	-
	RSA_Sign()	SECKEYLowPrivateKey	X	-
	RSA_Sign()	SECStatus	X	-
	RSA_CheckSign()	SECKEYLowPublicKey	X	-
	RSA_CheckSign()	SECStatus	X	-
	RSA_CheckSignRecover()	SECKEYLowPublicKey	X	-
	RSA_CheckSignRecover()	SECStatus	X	-
	RSA_SignRaw()	SECKEYLowPrivateKey	X	-
	RSA_SignRaw()	SECStatus	X	-
	RSA_CheckSignRaw()	SECKEYLowPublicKey	X	-
	RSA_CheckSignRaw()	SECStatus	X	-
	RSA_CheckSignRecoverRaw()	SECKEYLowPublicKey	X	-
	RSA_CheckSignRecoverRaw()	SECStatus	X	-
Encryption/ Decryption	DES_CreateContext()	DESContext	-	X
	DES_Encrypt()	DESContext	X	X
	DES_Encrypt()	SECStatus	X	-
	DES_Decrypt()	DESContext	X	X
	DES_Decrypt()	SECStatus	X	-
	DES_DestroyContext()	DESContext	-	X
Hashing	SHA1_NewContext()	SHA1Context	-	X
	SHA1_CloneContext()	SHA1Context	X	-
	SHA1_CloneContext()	SHA1Context	-	X
	SHA1_Begin()	SHA1Context	-	X
	SHA1_Update()	SHA1Context	X	X
	SHA1_End()	SHA1Context	X	X
	SHA1_HashBuf()	SECStatus	X	-
	SHA1_Hash()	SECStatus	X	-
	SHA1_DestroyContext()	SHA1Context	-	X
Key Generation	PQG_ParamGen()	PQGParams	-	X
		PQGVerify	-	X
		SECStatus	X	-
	PQG_ParamGenSeedLen()	PQGParams	-	X
		PQGVerify	-	X
		SECStatus	X	-
	PQG_VerifyParams()	PQGParams	X	-
		PQGVerify	X	-
		SECStatus	X	-
	DSA_NewKey()	PQGParams	X	-
		DSAPrivateKey	-	X
		SECStatus	X	-
	DSA_NewKeyFromSeed()	PQGParams	X	-
		DSAPrivateKey	-	X
		SECStatus	X	-
	RSA_NewKey()	RSAPrivateKey	-	X
	RSA_EncryptBlock()	SECKEYLowPublicKey	X	-
	RSA_EncryptBlock()	SECStatus	X	-
	RSA_DecryptBlock()	SECKEYLowPrivateKey	X	-
	RSA_DecryptBlock()	SECStatus	X	-
	RSA_EncryptRaw()	SECKEYLowPublicKey	X	-
	RSA_EncryptRaw()	SECStatus	X	-
	RSA_DecryptRaw()	SECKEYLowPrivateKey	X	-
	RSA_DecryptRaw()	SECStatus	X	-
PKCS #5 Password-Based Encryption	SEC_PKCS5GetSalt()	SECAlgorithmID	X	X
	SEC_PKCS5GetSalt()	SECItem	X	-
	SEC_PKCS5GetIV()	SECAlgorithmID	X	X
	SEC_PKCS5GetIV()	SECItem	X	-
	SEC_PKCS5GetKey()	SECAlgorithmID	X	X
	SEC_PKCS5GetKey()	SECItem	X	-
	SEC_PKCS5CipherData()	SECAlgorithmID	X	X
		SECItem	X	X
		SECItem	X	-
	SEC_PKCS5CreateAlgorithmID()	SECOidTag	X	-
		SECItem	X	X
		SECAlgorithmID	-	X
PKCS #12 Personal Information Exchange	SEC_PKCS12CreateExportContext()	SEC_PKCS12ExportContext	X	X
	SEC_PKCS12CreatePasswordPrivSafe()	SEC_PKCS12ExportContext	X	-
	SEC_PKCS12AddCertAndKey()	SEC_PKCS12ExportContext	X	-
		CERTCertificate	X	-
		SECStatus	X	-
	SEC_PKCS12Encode()	SEC_PKCS12ExportContext	X	-
	SEC_PKCS12Encode()	SECStatus	X	-
	SEC_PKCS12DestroyExportContext()	SEC_PKCS12ExportContext	-	X
	SEC_PKCS12DecoderStart()	SEC_PKCS12DecoderContext	X	X
	SEC_PKCS12DecoderUpdate()	SEC_PKCS12DecoderContext	X	-
	SEC_PKCS12DecoderUpdate()	SECStatus	X	-
	SEC_PKCS12DecoderFinish()	SEC_PKCS12DecoderContext	-	X
Prime Number Generation	mpp_make_prime()	mp_int	X	X
	mpp_make_prime()	mp_err	X	-
	mpp_pprime()	mp_int	X	-
	mpp_pprime()	mp_err	X	-
Private Key Storage and Retrieval	SECKEY_CloseKeyDB()	SECKEYKeyDBHandle	X	X
	SECKEY_DeleteKey()	SECKEYKeyDBHandle	X	X
		CERTCertificate	X	-
		SECStatus	X	-
	SECKEY_FindKeyByCert()	SECKEYKeyDBHandle	X	X
		CERTCertificate	X	X
		SECKEYLowPrivateKey	X	X
	SECKEY_OpenKeyDB()	SECKEYKeyDBHandle	X	-
	SECKEY_TraversePermKeys()	SECKEYKeyDBHandle	X	X
	SECKEY_TraversePermKeys()	SECStatus	X	-
	SECKEY_UpdateKeyDBPass1()	SECKEYKeyDBHandle	X	X
	SECKEY_UpdateKeyDBPass1()	SECStatus	X	-
	SECKEY_UpdateKeyDBPass2()	SECKEYKeyDBHandle	X	X
		SECItem	X	X
		SECStatus	X	-
Pseudorandom Number Generation	RNG_RNGInit()	SECStatus	X	-
	RNG_GenerateGlobalRandomBytes()	SECStatus	X	-
	RNG_RandomUpdate()	SECStatus	X	-
	RNG_RNGShutdown()	void	-	-
SSL Session ID Cache (Secret Management)	ssl_ChooseSessionIDProcs()	SSLSecurityInfo	X	X
	ssl_ChooseSessionIDProcs()	SSLSessionID	-	X
	SSL_ClearSessionCache()	SSLSessionID	X	X
	ssl_LookupSID()	SSLSessionID	X	X
	ssl_LookupSID()	SSLSessionID	X	-
	ssl_FreeSID()	SSLSessionID	X	X
	ssl_FreeSID()	SSLSessionID	-	X
SSL pre-master secrets	pk11_PRF()	const SECItem *secret	X	X

Section C Table IV

Navigation menu

Search