Spectra T50e - Page 302

To Next Page

To Previous Page

Chapter 10—Encryption and Key Management BlueScale Key Management

August 2017 User Guide—Spectra T50e Library

299

ThefollowingpasswordsarerequiredwithbotheditionsofBlueScale

Encryption:

 SuperuserPassword—Onlyauserloggedintothelibrarywith

superuserprivilegescanaccesstheEncryptionUserLoginscreen.

 EncryptionPassword—Letsyouaccessencryptionfeatures.This

passwordmustbeenteredafterthesuperuserlogin.

Password(s) for Key Import and Export Passwordsarealsousedtoencrypt

keysforexportandwhenimportingpreviouslyexportedkeys.Yoursite

mayconsiderwhethertocreatedifferentrulesforthesepasswords,suchas

requiringthatthesepasswordsarelongerthantheencryptionaccess

password(s),andthereforemoresecure.Optionally,inProfessional

Edition,youcanrequiretwodifferentpasswordsinordertoimportand

exportkeys.

Monikers Amonikerisanalphanumericidentifierthatistiedtothenever‐

revealedtruekeyvalue,whichisa256‐bitencryptionkey.Thelibraryuses

monikerstogenerateuniqueencryptionkeys.Thelibrarydisplaysthe

moniker,nottheencryptionkeyitself,wheneveritreferencesthe

encryptionkey.Theactualvalueofanencryptionkeyisneverdisplayed.

Themonikerhelpstoprotectdataencryptedusingthekeybyeliminating

theneedtodisplayortypetheactualkeyvalue.

Yoursitemaywanttocreaterulesgoverningnamingconventionsforkey

monikerstoensurethateachkeyisunique.

RecommendedMakeahabitofusingasinglecase(allupperoralllower)

formonikers.Aftertheencryptionkeyiscreatedandexported,thelibrary

ignoresthecaseusedinthemoniker.

Forexample,thelibraryinterpretsSpectra1,spectra1,andSPECTRA1as

thesamemonikerwhenimportingakey.However,thekeygeneratedby

eachvariationisunique.

Password and Moniker Standards Createstandardstogovernpasswords

andmonikernamesbasedonyoursite’ssecurityrequirements.For

example,ifyoursiterequiresahighlevelofsecurityforaccessto

encryptionpartitions,yourpasswordsandmonikersmayneedto

incorporatesomecombinationofthefollowingrequirements:

 Useaminimumnumberofcharacters.

 Usebothalphabeticcharactersandnumericcharacters.

 Usebothuppercaseandlowercaselettersforpasswords.

 Donotusewordsfoundinadictionary.

 Changethepasswordsatregularlyscheduledintervals.

Important

If you create two monikers that are identical except for case, you may not be able to

retrieve your data after importing a key that was created using a different variation

of the moniker.

Main Page

Spectra T50e - Page 302

Table of Contents

Other manuals for Spectra T50e

Related product manuals