NSSCryptoModuleSpec/Section 7: Cryptographic Key Management

From MozillaWiki
Jump to navigation Jump to search

This is a draft document

Document Description

DTR Section

Assessment

Status

Specification of all aspects of key management;
key material, key generation, key distribution, key entry & output, key storage, key destruction, key archiving.

VE.07.01.01
VE.07.13.01
through
VE.07.17.01
VE.07.19.01
VE.07.24.01
VE.07.39.01
VE.07.40.01
VE.07.41.01
VE.07.42.01

Key Management draft
Description of key protection

VE.07.02.01
VE.07.03.01

Key Management draft
Proof of FIPS approved key generation -
Provide a validation certificate from a NIST- accredited laboratory.

VE.07.11.01

Key Generation draft
Random number generator description VE.07.09.01

VE.07.10.01
VE.07.12.01

RNG draft
Random number generator test VE.07.08.01 draft
Proof/affirmation that key distribution is FIPS approved -
Provide a validation certificate issued by a NIST-accredited laboratory or provide written affirmation that the key distribution technique is FIPS-approved. 		(N/A) draft
Documentation of means to ensure entity association of stored keys

VE.07.13.01

Entity Association Assurance draft
Manually distributed secret keys (N/A) draft
Manually distributed secret key procedures

VE.07.15.01
VE.07.15.02
VE.07.16.01

(N/A) draft
Key generation

VE.07.18.01
VE.07.21.01
VE.07.23.01
VE.07.25.01
VE.07.27.01
VE.07.28.01
VE.07.29.01

(N/A) draft

Return to: NSSCryptoModuleSpec

Retrieved from "https://wiki.mozilla.org/index.php?title=NSSCryptoModuleSpec/Section_7:_Cryptographic_Key_Management&oldid=21201"