Manuals
/
HP
/
Computer Equipment
/
Software
HP
UX Security Products and Features Software
manual
With a Cssm capable of integrity checking
Models:
UX Security Products and Features Software
1
64
130
130
Download
130 pages
58.55 Kb
61
62
63
64
65
66
67
68
<
>
Troubleshooting
Install
Cdsa API Errors
Typeprocedure
What is
Authorization
Page 64
Image 64
Common Data Security Architecture (CDSA) White Paper
How to Create a CDSA
Add-In
Module for
HP-UX
with a CSSM capable of integrity checking.
64
Chapter 1
Page 63
Page 65
Page 64
Image 64
Page 63
Page 65
Contents
Contents
Sample Install Program Generating the Credential File
Migrating to Cdsa ZIP format Private Key File
Common Data Security Architecture Cdsa White Paper
Chapter
Glossary of Cdsa Terms and Acronyms
Glossary of Cdsa Terms and Acronyms
Glossary of Cdsa Terms and Acronyms
RC2
Glossary of Cdsa Terms and Acronyms
Glossary of Cdsa Terms and Acronyms
Glossary of Cdsa Terms and Acronyms
Glossary of Cdsa Terms and Acronyms
What Is CDSA?
What Is CDSA?
HP’s Implementation of Cdsa
HP-UX Cdsa Product Overview
What Is CDSA?
Cdsa Components in HP-UX
Cdsa Components on HP-UX
What Is CDSA?
Example of Cdsa APIs Used for Applications vs. Shared
Cdsa in the Context of Other Security Applications
Libraries
CDSA, shown relative to higher-level protocols and user
Applications
HP’s Paradigm Shift
Common Security Services Manager Cssm
Common Security Services Manager Cssm API
Cssm Module Information Files
Cssmnotlongfilenamesys
Cryptography Service Provider CSP API
Cryptography Service Provider CSP API
Public/Private Key Algorithms
Dual Asymmetric Key Algorithm
Symmetric Key Algorithm
Authenticating a Digital Signature
RC2 or RC4
Cryptography Service Provider CSP API
Hash
Interaction between CSP and Applications
CSP Operations
Cryptography Service Provider CSP API
Cryptography Service Provider CSP API
Extensibility Functions
Supported Functions and Algorithms
Cssmalgidcdmf
Cssmalgiddsa Cssmalgiddh
Purpose Pass-Through ID
Certificate Library Services CL API
What is a Certificate?
Certificate Library Services CL API
Outline of a Generic Certificate
Certificate Revocation List CRL and Operations
Interaction between Certificate Library and Application
Interaction between Cssm and Certificate Library Interface
Operations on Certificates
Certificate Library Interface
Certificate Library Services CL API
Certificate Library Services CL API
Certificate Library Services CL API
INTELX509V3PASSTHROUGHCREATEENCODEDNAME
INTELX509V3PASSTHROUGHENCODENAME
INTELX509V3PASSTHROUGHENCODEALGID
INTELX509V3PASSTHROUGHREADCERTFROMFILE
INTELX509V3PASSTHROUGHENCODEREVOKEDCERTLIST
INTELX509V3PASSTHROUGHFINDSUPPORTINGCSP
INTELX509V3PASSTHROUGHCSSMKEYTOSPKI
Role of Add-In Modules in the Cdsa Framework
Introduction to Add-in Modules
Introduction to Add-in Modules
Design Criteria for Add-In Modules
Global Unique Identifier Guid
Initializer
Code to Register Services with Cssm
Add-In Module Install Program
To Install an Add-In Library
How to Create a Cdsa Add-In Module for
How to Create a Cdsa Add-In Module for HP-UX
Ld -b -o libmylib.1 +I MyAddInInit
Implementing Integrity Checking in Add-In Modules
Programming Self-Check Functions into the Initializer
How to Create a Cdsa Add-In Module for HP-UX
How to Create a Cdsa Add-In Module for HP-UX
How to Create a Cdsa Add-In Module for HP-UX
How to Create a Cdsa Add-In Module for HP-UX
Typeprocedure
How to Create a Cdsa Add-In Module for HP-UX
Or specify the following for CL/TP/DL add-ins
With a Cssm capable of integrity checking
Validating the CSP Credentials
Credential File
Certificate Chain
Validating the CSP Credentials
Validation Sequence
Verifying a Certificate Chain
Integrity Check prior to Loading
Verifying the signature on the .SF file
SHA-1
Self Check
11 Verifying the validity of the CSP library
Bilateral Authentication
In-Memory vs. Static Checking
Further References
Concluding Remarks
Concluding Remarks
Concluding Remarks
Sample Install Program
Appendix a
Appendix a
Appendix a
Cssmapimemoryfuncs
Appendix a
Else if argc !=
Destpath
Sample Install Program
Appendix a
Sample Install Program
Generating the Credential File
Appendix B
HP Signing Policy for CSP Add-In Vendors for Cdsa Version
HP Signing Policy for CSP Add-In Vendors for Cdsa Version
Sample Add-in Module Code
Appendix C
Appendix C
Appendix C
Sample Add-in Module Code
Appendix C
Cssmreturn
= Null
Sample Add-in Module Code
== Cssmfail
Cssmmodulefuncs
Appendix C
Sample Add-in Module Code
Appendix C
Sample Add-in Module Code
Data
100
Appendix C 101
102
Appendix C 103
104
Functions Needed for Add-in Module Integrity
Appendix D 105
106
Trouble Shooting HP Cdsa
Appendix E 107
Cdsa API Errors
Cdsa API Errors
108
Appendix E 109
110
Appendix E 111
112
Appendix E 113
114
Appendix E 115
116
Appendix E 117
Cdsa Start Up Errors when calling CSSMModuleAttach
Cdsa Start Up Errors when calling CSSMModuleAttach
118
Appendix E 119
Debugging Core Dumps
Using DDE to Debug Cdsa Applications
120
Migrating to Cdsa
Appendix F 121
122
Appendix F 123
DL data structures
124
ZIP format
Appendix G 125
126
Appendix G 127
128
Private Key File
Appendix H 129
Private Key File Contention
130
Top
Page
Image
Contents
