MNR S2500 Security Policy
Version 1.3, Revision Date: 1/13/2009
Definition of Public Keys:
The following public keys are contained within the module:
Key | Description/Usage |
|
|
RSA Firmware Load Key | Distributed to module, for firmware authentication |
|
|
Distributed to peer, used for SSH authentication | |
|
|
Distributed to peer, used for SSH authentication | |
|
|
SSH Known Host Keys | Distributed to module, used to authenticate peer |
|
|
IKE DH public key (g^a) | Generated for IKE Phase 1 key establishment |
|
|
IKE DH | Phase 2 Diffie Hellman public keys used in PFS for key renewal (if |
key | configured) |
|
|
SSH DH Key | Generated for SSH key establishment |
|
|
| Table 9 – Public Keys |
Definition of CSPs Modes of Access
Table 10 defines the relationship between access to CSPs and the different module services. The modes of access shown in the table are defined as follows:
•Read: the data item is read from memory.
•Write: the data item is written into memory.
•Zeroize: the data item is actively overwritten.
Page 13