Clover Mobile Security Policy 17
Section
4.2)
SB code
signing key
(CRK) Verify SB ROM ECDSA
L=2048,
N=256
(See FIPS
186-4
Section
4.2) Maxim 32550 OTP
SB Master AES
Key Encrypt data stored in crypto RAM AES 128
Maxim 32550
hardware engine
that encrypts
crypto RAM
SB Auth
Keypair Identify and authenticate SB RSA 2048
Private: NVS RAM;
Public Key
Certificate: MB
SB Enc Keypair
Used for encrypting messages sent
to SB, in particular used to encrypt
RKI TMK RSA 2048
Private: NVS RAM;
Public Key: SB
MB Auth
Keypair Identify and authenticate MB RSA 2048
Private: MB (in msc
partition encrypted
under SSK); Public
Key Certificate: MB
Device Root
Keypair Signs Device Intermediate Keypair RSA 2048 MB ROM
PED Root
Keypair Signs PED Intermediate cert RSA 2048 SB ROM
FD
Manufacturer
Root Keypair
Sign
Manufacturer_Provisioning_CA RSA 2048 SB ROM
RKI TMK
Symmetric key used to encrypt
TR31 formatted IPEKs during
remote key injection process TDES 112
Maxim 32550 NVS
RAM
KDH Root
Keypair
Validating authenticitiy of remote
key injection responses RSA 2048 SB ROM
Clover KDH
Signature
Signer Keypair Sign the RKI TMK Signature RSA 2048 SB ROM
Transarmor
Intermediate
Cert Keypair
Validate authenticity of SRED RSA
key (in case of RSA Transamor) RSA 2048 SB ROM
TransArmor
Keypair Encrypt SRED data RSA 2048 SB RAM
PIN IPEK Initialize DUKPT key table 3DES 112 Maxim 32550 NVS
To Next Page
Loading...
Need help?
General
