Manuals / Motorola / Computer Equipment / Network Router

Motorola S2500 manual Definition of Public Keys, Definition of CSPs Modes of Access

Models: S2500

1 18

Download 18 pages 22.72 Kb

Page 13

MNR S2500 Security Policy

Version 1.3, Revision Date: 1/13/2009

Definition of Public Keys:

The following public keys are contained within the module:

Key	Description/Usage

RSA Firmware Load Key	Distributed to module, for firmware authentication

SSH-RSA Key	Distributed to peer, used for SSH authentication

SSH-DSA Key	Distributed to peer, used for SSH authentication

SSH Known Host Keys	Distributed to module, used to authenticate peer

IKE DH public key (g^a)	Generated for IKE Phase 1 key establishment

IKE DH phase-2 public (g^a)	Phase 2 Diffie Hellman public keys used in PFS for key renewal (if
key	configured)

SSH DH Key	Generated for SSH key establishment

	Table 9 – Public Keys

Definition of CSPs Modes of Access

Table 10 defines the relationship between access to CSPs and the different module services. The modes of access shown in the table are defined as follows:

•Read: the data item is read from memory.

•Write: the data item is written into memory.

•Zeroize: the data item is actively overwritten.

Page 13

Image 13

Motorola S2500 manual Definition of Public Keys, Definition of CSPs Modes of Access

Contents

Document Version Revision Date 1/13/2009 Motorola Network Router MNR S2500 Security PolicyPage TABLE OF CONTENTSMNR S2500 Security Policy Version 1.3, Revision Date 1/13/2009Optional Interface Cards 1. Module Overviewnot included in cryptographic module boundary 3. Modes of Operation 2. Security LevelSecurity Requirements Section LevelAllowed Algorithms Firmware ImplementationsNon-FIPS approved algorithms SETDefault !portlist -CRYPTO CONTrol = Enabled Entering FIPS ModeTable 3 - FIPS Approved mode configuration StepMNR S2500 Security Policy Version 1.3, Revision Date 1/13/2009 SHOW -CRYPTO CONFiguration4. Ports and Interfaces 5. Identification and Authentication PolicyAssumption of roles The definition of all supported roles is shown in Table 5 below Authenticated Services 6. Access Control PolicyUnauthenticated Services Service Roles and ServicesAdmin MaintenanceThe following CSPs are contained within the module Definition of Critical Security Parameters CSPsDescription/Usage Table 8 - Critical Security Parameters CSPsDefinition of Public Keys Definition of CSPs Modes of AccessReboot Table 10 - Services to CSP Access mappingEnable Ports Access Control8. Security Rules 7. Operational Environment9. Crypto Officer Guidance 11. Mitigation of Other Attacks Policy 10. Physical Security Policy12. Definitions and Acronyms Physical Security MechanismsSHA - Secure Hash Algorithm SSH - Secure Shell PFS - Perfect Forward Secrecy RNG - Random Number GeneratorSNMP - Simple Network Management Protocol Page