22
edits
FIPS Operational Environment: Difference between revisions
→Access to Cryptographic Keys, CSPs, and Plaintext Data
| Line 119: | Line 119: | ||
-rw------- 1 wtchang wtchang 32768 May 15 22:16 key3.db | -rw------- 1 wtchang wtchang 32768 May 15 22:16 key3.db | ||
-rw------- 1 wtchang wtchang 32768 May 15 22:15 secmod.db | -rw------- 1 wtchang wtchang 32768 May 15 22:15 secmod.db | ||
or | or | ||
-rw------- 1 gb staff 9216 May 6 10:22 cert9.db | $ls -l *.db | ||
-rw------- 1 gb staff 11264 May 6 10:22 key4.db | -rw------- 1 gb staff 9216 May 6 10:22 cert9.db | ||
-rw------- 1 gb staff 11264 May 6 10:22 key4.db | |||
Since the cryptographic keys and CSPs are stored in encrypted form, the owner needs to assume the NSS User role by authenticating with the password to decrypt the cryptographic keys and CSPs stored in the private key database. | Since the cryptographic keys and CSPs are stored in encrypted form, the owner needs to assume the NSS User role by authenticating with the password to decrypt the cryptographic keys and CSPs stored in the private key database. | ||