Changes

Jump to: navigation, search

FIPS Operational Environment

1,910 bytes added, 18:31, 26 September 2006
Auditable Events
** Object management functions, where the object is a cryptographic key (object class <code>CKO_PUBLIC_KEY</code>, <code>CKO_PRIVATE_KEY</code>, and <code>CKO_SECRET_KEY</code>)
*** <code>FC_CreateObject</code>
**** "C_CreateObject(hSession=''<session handle>'', pTemplate=''<template pointer>'', ulCount=''<count>'', phObject=''<object handle pointer>'')=''<return code>''"
*** <code>FC_CopyObject</code>
**** "C_CopyObject(hSession=''<session handle>'', hObject=''<object handle>'', pTemplate=''<template pointer>'', ulCount=''<count>'', phNewObject=''<object handle pointer>'')=''<return code>''"
*** <code>FC_DestroyObject</code>
**** "C_DestroyObject(hSession=''<session handle>'', hObject=''<object handle>'')=''<return code>''"
*** <code>FC_GetObjectSize</code>
**** "C_GetObjectSize(hSession=''<session handle>'', hObject=''<object handle>'', pulSize=''<size pointer>'')=''<return code>''"
*** <code>FC_GetAttributeValue</code>
**** "C_GetAttributeValue(hSession=''<session handle>'', hObject=''<object handle>'', pTemplate=''<template pointer>'', ulCount=''<count>'')=''<return code>''"
*** <code>FC_SetAttributeValue</code>
**** "C_SetAttributeValue(hSession=''<session handle>'', hObject=''<object handle>'', pTemplate=''<template pointer>'', ulCount=''<count>'')=''<return code>''"
** Key management functions
*** <code>FC_GenerateKey</code>
**** "C_GenerateKey(hSession=''<session handle>'', pMechanism=''<mechanism>'', pTemplate=''<template pointer>'', ulCount=''<count>'', phKey=''<key object handle pointer>'')=''<return code>''"
*** <code>FC_GenerateKeyPair</code>
*** <code>FC_UnwrapKey</code>
*** <code>FC_DeriveKey</code>
** Cipher "Init" functions
*** <code>FC_EncryptInit</code>**** "C_EncryptInit(hSession=''<session handle>'', pMechanism=''<mechanism>'', hKey=''<key object handle>'')=''<return code>''"*** <code>FC_DecryptInit</code>**** "C_DecryptInit(hSession=''<session handle>'', pMechanism=''<mechanism>'', hKey=''<key object handle>'')=''<return code>''"*** <code>C_DecryptInitFC_DigestKey</code>*** <code>FC_SignInit</code>**** "C_SignInit(hSession=''<session handle>'', pMechanism=''</mechanism>'', hKey=''<key object handle>'')=''<return code>''"*** <code>FC_SignRecoverInit</code>**** "C_SignRecoverInit(hSession=''<session handle>'', pMechanism=''<mechanism>'', hKey=''</key object handle>'')=''<return code>''"*** <code>FC_VerifyInit</code>**** "C_VerifyInit(hSession=''</session handle>'', pMechanism=''<mechanism>'', hKey=''<key object handle>'')=''<return code>''"*** <code>FC_VerifyRecoverInit</code>**** "C_VerifyRecoverInit(hSession=''</session handle>'', pMechanism=''<mechanism>'', hKey=''<key object handle>'')=''<return code>''"
* attempts to provide invalid input for crypto officer functions: We log the use of all crypto officer functions with the return code. The return code tells us whether the operator attempted to provide invalid input.
** <code>FC_InitToken(slotID, pPin, ulPinLen, pLabel)</code>
Wtchang
Canmove, confirm
937
edits
Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/34828"

Navigation menu