MozillaWiki

FIPSFSM: Difference between revisions

Page Discussion

FIPSFSM (view source)

Revision as of 02:08, 12 October 2006

459 bytes removed ,  12 October 2006
→‎States
Line 40: Line 40:
| 1.X|| Power Off
| 1.X|| Power Off
| Host computer is powered off. The initial state.|| Host computer's power light is off.
| Host computer is powered off. The initial state.|| Host computer's power light is off.
|-
| 1.Y|| Power On
| Host computer is up and running. This is a composite state with concurrent component state machines (separated by the dotted line) for the FIPS Approved mode and non-FIPS Approved mode.|| Host computer's power light is on.
|-
|-
| 1.A|| Inactive
| 1.A|| Inactive
| The FIPS Approved mode of the NSS cryptographic module is inactive.|| Only <code>FC_GetFunctionList</code> and <code>FC_Initialize</code> may be called.
| Host computer is up and running.|| Host computer's power light is on.
|-
|-
| 1.B|| Power Up Self Test
| 1.B|| Power Up Self Test
Line 59: Line 56:
| The FIPS Approved mode of the NSS cryptographic module either has failed a conditional test while performing a service or has failed a power-up or operator-initiated self-test. No further cryptographic operations will be performed.|| Only <code>FC_Finalize</code>, <code>FC_InitToken</code>, <code>FC_CloseSession</code>, <code>FC_CloseAllSessions</code>, <code>FC_WaitForSlotEvent</code>, and the "get info" functions (<code>FC_GetFunctionList</code>, <code>FC_GetInfo</code>, <code>FC_GetSlotList</code>, <code>FC_GetSlotInfo</code>, and <code>FC_GetTokenInfo</code>) can be invoked. <code>FC_Initialize</code> fails with the error code <code>CKR_CRYPTOKI_ALREADY_INITIALIZED</code>. All other functions fail with the error code <code>CKR_DEVICE_ERROR</code>.
| The FIPS Approved mode of the NSS cryptographic module either has failed a conditional test while performing a service or has failed a power-up or operator-initiated self-test. No further cryptographic operations will be performed.|| Only <code>FC_Finalize</code>, <code>FC_InitToken</code>, <code>FC_CloseSession</code>, <code>FC_CloseAllSessions</code>, <code>FC_WaitForSlotEvent</code>, and the "get info" functions (<code>FC_GetFunctionList</code>, <code>FC_GetInfo</code>, <code>FC_GetSlotList</code>, <code>FC_GetSlotInfo</code>, and <code>FC_GetTokenInfo</code>) can be invoked. <code>FC_Initialize</code> fails with the error code <code>CKR_CRYPTOKI_ALREADY_INITIALIZED</code>. All other functions fail with the error code <code>CKR_DEVICE_ERROR</code>.
|-
|-
| 5.A|| Inactive
| 5.B|| Non-FIPS
| The non-FIPS Approved mode of the NSS cryptographic module is inactive.|| Only <code>NSC_GetFunctionList</code> and <code>NSC_Initialize</code> may be called.
| The non-FIPS Approved mode of the NSS cryptographic module has been activated. This is a composite state whose substates are not relevant to FIPS 140-2.|| NSV_Initialize has been called successfully. All other <code>NSC_xxx</code> functions may be called.
|-
| 5.B|| Activated
| The non-FIPS Approved mode of the NSS cryptographic module has been activated. This is a composite state whose substates are not relevant to FIPS 140-2.|| All <code>NSC_xxx</code> functions may be called.
|}
|}


Neil.williams
198

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/35821"