canmove, Confirmed users
937
edits
NSSCryptoModuleSpec/Section 9: Self Tests: Difference between revisions
Jump to navigation
Jump to search
NSSCryptoModuleSpec/Section 9: Self Tests (view source)
Revision as of 18:34, 1 August 2006
, 1 August 2006no edit summary
No edit summary |
No edit summary |
||
| Line 37: | Line 37: | ||
design requirement. | design requirement. | ||
|| | || | ||
[http://wiki.mozilla.org/VE_09#VE.09.05.01 VE.09.05.01 ] | [http://wiki.mozilla.org/VE_09#VE.09.05.01 VE.09.05.01 ] [http://wiki.mozilla.org/VE_09#VE.09.06.01 VE.09.06.01 ] | ||
|| | || | ||
'''Power-up | '''Power-up self-test''': | ||
[http://www.mozilla.org/projects/security/pki/nss/fips/nss-source/mozilla/security/nss/lib/softoken/fipstokn.c.dep.html#FC_Initialize PKCS#11 Initialization]: | [http://www.mozilla.org/projects/security/pki/nss/fips/nss-source/mozilla/security/nss/lib/softoken/fipstokn.c.dep.html#FC_Initialize PKCS #11 Initialization]: | ||
During the PKCS #11 initialization of the FIPS 140-2 module, any error return | |||
FIPS | from the battery of self-tests will put the module in the Error state. | ||
from the battery of self tests will put the | |||
The Error state will inhibit further cryptographic operations ([http://wiki.mozilla.org/ModuleInterfaces#In_Error_State In Error State ]). | The Error state will inhibit further cryptographic operations ([http://wiki.mozilla.org/ModuleInterfaces#In_Error_State In Error State ]). | ||
Output from the | Output from the cryptographic module is via two paths: 1) the return code of the cryptographic function and, 2) buffers and objects which are operated on by the function, the locations of which are passed as function arguments. In the Error state the return code is always <code>CKR_DEVICE_ERROR</code>. No action besides setting the return code is taken by the requested function, which prevents data output of the second type. | ||
|| Draft | || Draft | ||
|- | |- | ||