or Linux-based computer.
Remote Administration Service
Enables secure communications between an nShield Remote Administration Card and
the hardserver that is connected to the appropriate HSM. Listens for incoming
connection requests from nShield Remote Administration Clients. Supplies a list of
available HSMs to the nShield Remote Administration Client and maintains an
association between the relevant card reader and the HSM.
Rijndael
See also
Advanced Encryption Standard (AES)
Salt: X
The random value, or salt, is used in some commands to discourage brute force
searching for keys.
Security World
The Security World technology provides an infrastructure for secure lifecycle
management of keys. A Security World consists of at least one HSM, some
cryptographic key and certificate data encrypted by a Security World key and stored
on at least one host computer, a set of Administrator Cards used to control access to
Security World configuration, recovery and replacement operations, and optionally
one or more sets of Operator Cards used to control access to application keys.
See also
Administrator Card Set (ACS), Operator Card Set (OCS)
Security World key: K
MSW
The Security World key is the module key that is present on all modules in a Security
World. Each Security World has a unique Security World key. This key is generated
randomly when the Security World is created, and it is stored as a key blob protected
by the ACS.
Share: K
Ti
The notation K
Ti
indicates a share of a logical token. Shares can be stored on smart
cards or software tokens. Each share is encrypted under a separate share key.
Share key: K
Si
A share key is a key used to protect an individual share in a token. Share keys are
created from a Security World key, a pass phrase, and a salt value.
nShield® Security Manual 89 of 90
To Next Page
Loading...
