Appendix B: Glossary
Authorized Card List
Controls the use of Remote Administration cards. If the serial number of a card does
not appear in the Authorized Card List, it is not recognized by the system and cannot
be used. The list only applies to Remote Administration cards.
Access Control List (ACL)
An Access Control List is a set of information contained within a key that specifies
what operations can be performed with the associated key object and what
authorization is required to perform each of those operations.
Administrator Card Set (ACS)
Part of the Security World architecture, an Administrator Card Set (ACS) is a set of
smart cards used to control access to Security World configuration, as well as
recovery and replacement operations.
The Administrator Cards containing share in the logical tokens that protect the
Security World keys, including K
NSO
, the key-recovery key, and the recovery
authorization keys. Each card contains one share from each token. The ACS is created
using the well-known module key so that it can be loaded onto any nShield module.
See also
Security World, Operator Card Set (OCS)
Advanced Encryption Standard (AES)
The Advanced Encryption Standard (AES) is a block cipher adopted as an encryption
standard by the US government and officially documented as US FIPS PUB 197 (FIPS
197). Originally only used for non-classified data, AES was also approved for use with
for classified data in June 2003. Like its predecessor, the Data Encryption Standard
(DES), AES has been analyzed extensively and is now widely used around the world.
Although AES is often referred to as Rijndael (the cipher having been submitted to
the AES selection process under that name by its developers, Joan Daemen and
Vincent Rijmen), these are not precisely the same cipher. Technically, Rijndael
supports a larger range of block and key sizes (at any multiple of 32 bits, to a
minimum of 128 bits and a maximum of 256 bits); AES has a fixed block size of 128
bits and only supports key sizes of 128, 192, or 256 bits.
See also
Data Encryption Standard (DES)
nShield® Security Manual 82 of 90
To Next Page
Loading...
