Security Policy: Difference between revisions

Jump to navigation Jump to search

Security Policy (view source)

Revision as of 18:41, 24 August 2006

8 bytes added ,  24 August 2006
→‎Multiple Concurrent Operator Roles and Services
Line 322: Line 322:
The NSS cryptographic module doesn't allow concurrent '''operators'''.
The NSS cryptographic module doesn't allow concurrent '''operators'''.
* For Security Level 1, the operating system has been restricted to a single operator mode of operation, so concurrent operators are explicitly excluded (FIPS 140-2 Sec. 4.6.1).
* For Security Level 1, the operating system has been restricted to a single operator mode of operation, so concurrent operators are explicitly excluded (FIPS 140-2 Sec. 4.6.1).
* On a multi-user operating system, this is enforced by making the NSS certificate and key databases readable and writable by only the owner of the files.
* On a multi-user operating system, this is enforced by making the NSS certificate and private key databases readable and writable by only the owner of the files.


FIPS 140-2 Implementation Guidance 6.1 clarifies the use of a cryptographic module on a server.
FIPS 140-2 Implementation Guidance 6.1 clarifies the use of a cryptographic module on a server.
Wtchang
canmove, Confirmed users
937

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/32380"

Navigation menu