VE 07KeyMgmt: Difference between revisions

Jump to navigation Jump to search

VE 07KeyMgmt (view source)

Revision as of 00:05, 10 August 2006

76 bytes added ,  10 August 2006
→‎Key Zeroization
Line 133: Line 133:
(<code>PR_Free()</code> calls the Standard C library function <code>free()</code> to free memory allocated from the heap.)
(<code>PR_Free()</code> calls the Standard C library function <code>free()</code> to free memory allocated from the heap.)


A plaintext secret or private key is zeroized when it is deleted.
A plaintext secret or private key is zeroized when it is deleted (with a <code>FC_DestroyObject</code> call).


All plaintext secret and private keys are zeroized when
All plaintext secret and private keys are zeroized when
Line 140: Line 140:
* the NSS cryptographic module switches between the FIPS and non-FIPS modes.
* the NSS cryptographic module switches between the FIPS and non-FIPS modes.


Passwords are automatically zeroized immediately after use.
Passwords are automatically zeroized by the NSS cryptographic module immediately after use.


The <code>memset()</code> function is extremely fast. Zeroization can be performed in a time that is not sufficient to compromise plaintext secret and private keys and passwords.
The <code>memset()</code> function is extremely fast. Zeroization can be performed in a time that is not sufficient to compromise plaintext secret and private keys and passwords.
Wtchang
canmove, Confirmed users
937

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/31209"

Navigation menu