Connection path in
figure
Connection path
description
Encryption
purpose
Certificate to be
used
A Between the SVP
and client PC
Operation of Device
Manager - Stor
age
Navigator
A signed certicate
of SSL encryption
between the SVP
and client PC
B Between the SVP
and storage system
SVP exchanges the
information with
the storage system
The certicate for
"Connect to SVP"
and the certicate
for "Web server"
C Between the client
PC and storage
system
Operation of
maintenance utility
The certicate for
"Web server"
To prevent a man-in-the middle attack, the encryption shown in notation B (between SVP
and storage system) veries the validity of the connection by using the certicate that
was uploaded to the SVP in advance and by using the certicate of the storage system.
The same certicate must be uploaded to the SVP and the storage system.
SSL encryption of the storage system
Chapter 11: Setting up SSL encryption
Service Processor Technical Reference 198
To Next Page
Loading...
