5. Access Control
An nShield HSM Security World can be configured and managed both remotely and
locally using the supplied access control mechanisms.
5.1. Security World access control architecture
This section describes the access control options available within a Security World and
the pros and cons of each option. This guidance is provided to help the customer to
determine the right options for their threat environment.
5.1.1. Security World access control
All Security Worlds are protected by an ACS created at Security World initialization. The
ACS is used to:
•
Control access to Security World configuration
•
Authorize recovery and replacement operations.
The ACS consists of a number of smart cards, N, of which a smaller number, K, is required
to authorize an action. The required number K is known as the quorum. The cards are
distributed amongst authorized role holders so that a quorum of role holders are
required to authorize the above operations.
See Administrator Card Set (ACS) protection for guidance on configuring and protecting
the ACS.
5.1.2. Application key access control
The Security World and nShield HSM provide the facility for different levels of application
key protection. There are three levels of application key protection:
•
Module protection
◦ The key is simply protected by a module key
◦ Any application on the server can load and use the key.
•
Softcard protection
◦ The key is additionally protected by a pass phrase
◦ An application will prompt you for the pass phrase before loading the key.
•
OCS (token) protection.
◦ The key is protected by a card set
◦ Each card set consists of a number of smart cards, N, of which a smaller number,
nShield® Security Manual 29 of 90
To Next Page
Loading...
Need help?
General
