Section C Table IV: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
mNo edit summary |
||
| Line 14: | Line 14: | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<th rowspan="15">Certificate <br> | <th rowspan="15">Certificate<br>Storage and <br>Retrieval</th> | ||
<td rowspan="4">AddCertToPermDB()</td> | <td rowspan="4">AddCertToPermDB()</td> | ||
| Line 516: | Line 514: | ||
<tr> | <tr> | ||
<th rowspan="24">Key <br> | <th rowspan="24">Key<br>Generation</th> | ||
<td rowspan="3">PQG_ParamGen()</td> | <td rowspan="3">PQG_ParamGen()</td> | ||
<td>PQGParams</td> | <td>PQGParams</td> | ||
| Line 771: | Line 768: | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<th rowspan="12">PKCS #5 <br> | <th rowspan="12">PKCS #5<br>Password-Based<br>Encryption</th> | ||
<td rowspan="2">SEC_PKCS5GetSalt()</td> | <td rowspan="2">SEC_PKCS5GetSalt()</td> | ||
<td>SECAlgorithmID</td> | <td>SECAlgorithmID</td> | ||
| Line 900: | Line 895: | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<th rowspan="12">PKCS #12 <br> | <th rowspan="12">PKCS #12<br>Personal<br>Information<br>Exchange</th> | ||
<td>SEC_PKCS12CreateExportContext()</td> | <td>SEC_PKCS12CreateExportContext()</td> | ||
<td>SEC_PKCS12ExportContext</td> | <td>SEC_PKCS12ExportContext</td> | ||
| Line 1,035: | Line 1,026: | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<th rowspan="4">Prime <br> | <th rowspan="4">Prime<br>Number<br>Generation</th> | ||
<td rowspan="2">mpp_make_prime()</td> | <td rowspan="2">mpp_make_prime()</td> | ||
| Line 1,081: | Line 1,070: | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<th rowspan="15">Private Key <br> | <th rowspan="15">Private Key<br>Storage and<br>Retrieval</th> | ||
<td>SECKEY_CloseKeyDB()</td> | <td>SECKEY_CloseKeyDB()</td> | ||
<td>SECKEYKeyDBHandle</td> | <td>SECKEYKeyDBHandle</td> | ||
| Line 1,243: | Line 1,229: | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<th rowspan="4">Pseudorandom <br> | <th rowspan="4">Pseudorandom<br>Number<br>Generation</th> | ||
<td>RNG_RNGInit()</td> | <td>RNG_RNGInit()</td> | ||
<td>SECStatus</td> | <td>SECStatus</td> | ||
| Line 1,292: | Line 1,275: | ||
<tr> | <tr> | ||
<th rowspan="7">SSL Session ID <br> | <th rowspan="7">SSL Session ID<br>Cache<br>(Secret<br>Management)</th> | ||
<td rowspan="2">ssl_ChooseSessionIDProcs()</td> | <td rowspan="2">ssl_ChooseSessionIDProcs()</td> | ||
| Line 1,384: | Line 1,364: | ||
</tr> | </tr> | ||
</table> | </table> | ||
Latest revision as of 01:37, 13 April 2006
| Service | Service Routine | Security Relevant Data Item | Read Access |
Write Access |
|---|---|---|---|---|
| Certificate Storage and Retrieval |
AddCertToPermDB() | CERTCertDBHandle |
|
|
| CERTCertificate |
|
|
||
| CERTCertTrust |
|
|
||
| certDBEntryCert |
|
|
||
| CERT_ClosePermCertDB() | CERTCertDBHandle |
|
|
|
| SEC_FindPermCertByKey() | CERTCertDBHandle |
|
|
|
| SECItem |
|
|
||
| certDBEntryCert |
|
|
||
| SEC_OpenPermCertDB() | CERTCertDBHandle |
|
|
|
| SECStatus |
|
|
||
| SEC_DeletePermCertificate() | CERTCertDBHandle |
|
|
|
| CERTCertificate |
|
|
||
| SECStatus |
|
|
||
| SEC_TraversePermCerts() | CERTCertDBHandle |
|
|
|
| SECStatus |
|
|
||
| Digital Signatures |
DSA_SignDigest() | DSAPrivateKey |
|
|
| SECStatus |
|
|
||
| DSA_VerifyDigest() | DSAPublicKey |
|
|
|
| SECStatus |
|
|
||
| RSA_Sign() | SECKEYLowPrivateKey |
|
|
|
| SECStatus |
|
|
||
| RSA_CheckSign() | SECKEYLowPublicKey |
|
|
|
| SECStatus |
|
|
||
| RSA_CheckSignRecover() | SECKEYLowPublicKey |
|
|
|
| SECStatus |
|
|
||
| RSA_SignRaw() | SECKEYLowPrivateKey |
|
|
|
| SECStatus |
|
|
||
| RSA_CheckSignRaw() | SECKEYLowPublicKey |
|
|
|
| SECStatus |
|
|
||
| RSA_CheckSignRecoverRaw() | SECKEYLowPublicKey |
|
|
|
| SECStatus |
|
|
||
| Encryption/ Decryption |
DES_CreateContext() | DESContext |
|
|
| DES_Encrypt() | DESContext |
|
|
|
| SECStatus |
|
|
||
| DES_Decrypt() | DESContext |
|
|
|
| SECStatus |
|
|
||
| DES_DestroyContext() | DESContext |
|
|
|
| Hashing | SHA1_NewContext() | SHA1Context |
|
|
| SHA1_CloneContext() | SHA1Context |
|
|
|
| SHA1Context |
|
|
||
| SHA1_Begin() | SHA1Context |
|
|
|
| SHA1_Update() | SHA1Context |
|
|
|
| SHA1_End() | SHA1Context |
|
|
|
| SHA1_HashBuf() | SECStatus |
|
|
|
| SHA1_Hash() | SECStatus |
|
|
|
| SHA1_DestroyContext() | SHA1Context |
|
|
|
| Key Generation |
PQG_ParamGen() | PQGParams |
|
|
| PQGVerify |
|
|
||
| SECStatus |
|
|
||
| PQG_ParamGenSeedLen() | PQGParams |
|
|
|
| PQGVerify |
|
|
||
| SECStatus |
|
|
||
| PQG_VerifyParams() | PQGParams |
|
|
|
| PQGVerify |
|
|
||
| SECStatus |
|
|
||
| DSA_NewKey() | PQGParams |
|
|
|
| DSAPrivateKey |
|
|
||
| SECStatus |
|
|
||
| DSA_NewKeyFromSeed() | PQGParams |
|
|
|
| DSAPrivateKey |
|
|
||
| SECStatus |
|
|
||
| RSA_NewKey() | RSAPrivateKey |
|
|
|
| RSA_EncryptBlock() | SECKEYLowPublicKey |
|
|
|
| SECStatus |
|
|
||
| RSA_DecryptBlock() | SECKEYLowPrivateKey |
|
|
|
| SECStatus |
|
|
||
| RSA_EncryptRaw() | SECKEYLowPublicKey |
|
|
|
| SECStatus |
|
|
||
| RSA_DecryptRaw() | SECKEYLowPrivateKey |
|
|
|
| SECStatus |
|
|
||
| PKCS #5 Password-Based Encryption |
SEC_PKCS5GetSalt() | SECAlgorithmID |
|
|
| SECItem |
|
|
||
| SEC_PKCS5GetIV() | SECAlgorithmID |
|
|
|
| SECItem |
|
|
||
| SEC_PKCS5GetKey() | SECAlgorithmID |
|
|
|
| SECItem |
|
|
||
| SEC_PKCS5CipherData() | SECAlgorithmID |
|
|
|
| SECItem |
|
|
||
| SECItem |
|
|
||
| SEC_PKCS5CreateAlgorithmID() | SECOidTag |
|
|
|
| SECItem |
|
|
||
| SECAlgorithmID |
|
|
||
| PKCS #12 Personal Information Exchange |
SEC_PKCS12CreateExportContext() | SEC_PKCS12ExportContext |
|
|
| SEC_PKCS12CreatePasswordPrivSafe() | SEC_PKCS12ExportContext |
|
|
|
| SEC_PKCS12AddCertAndKey() | SEC_PKCS12ExportContext |
|
|
|
| CERTCertificate |
|
|
||
| SECStatus |
|
|
||
| SEC_PKCS12Encode() | SEC_PKCS12ExportContext |
|
|
|
| SECStatus |
|
|
||
| SEC_PKCS12DestroyExportContext() | SEC_PKCS12ExportContext |
|
|
|
| SEC_PKCS12DecoderStart() | SEC_PKCS12DecoderContext |
|
|
|
| SEC_PKCS12DecoderUpdate() | SEC_PKCS12DecoderContext |
|
|
|
| SECStatus |
|
|
||
| SEC_PKCS12DecoderFinish() | SEC_PKCS12DecoderContext |
|
|
|
| Prime Number Generation |
mpp_make_prime() | mp_int |
|
|
| mp_err |
|
|
||
| mpp_pprime() | mp_int |
|
|
|
| mp_err |
|
|
||
| Private Key Storage and Retrieval |
SECKEY_CloseKeyDB() | SECKEYKeyDBHandle |
|
|
| SECKEY_DeleteKey() | SECKEYKeyDBHandle |
|
|
|
| CERTCertificate |
|
|
||
| SECStatus |
|
|
||
| SECKEY_FindKeyByCert() | SECKEYKeyDBHandle |
|
|
|
| CERTCertificate |
|
|
||
| SECKEYLowPrivateKey |
|
|
||
| SECKEY_OpenKeyDB() | SECKEYKeyDBHandle |
|
|
|
| SECKEY_TraversePermKeys() | SECKEYKeyDBHandle |
|
|
|
| SECStatus |
|
|
||
| SECKEY_UpdateKeyDBPass1() | SECKEYKeyDBHandle |
|
|
|
| SECStatus |
|
|
||
| SECKEY_UpdateKeyDBPass2() | SECKEYKeyDBHandle |
|
|
|
| SECItem |
|
|
||
| SECStatus |
|
|
||
| Pseudorandom Number Generation |
RNG_RNGInit() | SECStatus |
|
|
| RNG_GenerateGlobalRandomBytes() | SECStatus |
|
|
|
| RNG_RandomUpdate() | SECStatus |
|
|
|
| RNG_RNGShutdown() | void |
|
|
|
| SSL Session ID Cache (Secret Management) |
ssl_ChooseSessionIDProcs() | SSLSecurityInfo |
|
|
| SSLSessionID |
|
|
||
| SSL_ClearSessionCache() | SSLSessionID |
|
|
|
| ssl_LookupSID() | SSLSessionID |
|
|
|
| SSLSessionID |
|
|
||
| ssl_FreeSID() | SSLSessionID |
|
|
|
| SSLSessionID |
|
|
||
| SSL pre-master secrets | pk11_PRF() | const SECItem *secret |
|
|