The Session Chooser

The Session Chooser

Any Crypto-C application which uses hardware requires your application to declare two choosers:

The baseline software chooser, such as the one that is used in any Crypto-C application. This chooser must be modified to include the generic Crypto-C hardware methods that support the desired hardware.

The hardware chooser, that lists the manufacturer-specific hardware methods that can be used. This chooser has no analogue in a software-only application.

Once these choosers have been declared, you can combine them via a call to B_CreateSessionChooser. This creates the session chooser, which matches the hardware-compatible AMs in the software chooser with their actual instantiations in the hardware chooser. Specifically, for each item in the software chooser that references a hardware method, the hardware method replaces it.

Creating the Session Chooser

The following example shows how a simple session chooser can be created. This chooser is set up to access Intel’s random number generator, which can then be used via the Crypto-C AI, AI_HW_Random.

Creating the Software Chooser

The software chooser is a conventional chooser, containing pointers to Crypto-C algorithm methods. In this case, since we are going to generate random numbers using the Intel hardware random number generator, we must include AM_HW_RANDOM. This algorithm method instructs Crypto-C to use a hardware method for generating random data. In an actual application, you would also list all the software methods, such as methods for encryption and decryption, that are required by your application. For random number generation, the software chooser can be set up as follows:

B_ALGORITHM_METHOD *SOFTWARE_CHOOSER[] = { &AM_HW_RANDOM,

(B_ALGORITHM_METHOD *)NULL_PTR };

C h a p t e r 2 U s i n g I n t e l H a r d w a r e W i t h C r y p t o - C

7

Page 10 Page 12
Page 11
Image 11
RSA Security 4.3 manual Creating the Session Chooser, Creating the Software Chooser
Page 10 Page 12

4.3 specifications

RSA Security 4.3 is a robust cybersecurity solution designed to help organizations protect their sensitive data and secure digital identities. This version builds upon the foundation of its predecessors, offering enhanced features and technologies that address the evolving landscape of security threats.

One of the main features of RSA Security 4.3 is its advanced multi-factor authentication (MFA) capabilities. MFA is essential for blocking unauthorized access, and this version supports a wide range of authentication methods, including biometrics, hardware tokens, and software-based solutions. This flexibility allows organizations to implement strong security measures tailored to their specific needs while providing a seamless user experience.

Another significant characteristic of RSA Security 4.3 is its risk-based authentication. This feature evaluates the context of each login attempt, considering factors such as device reputation, geographical location, and user behavior. By analyzing these parameters, the system can dynamically adjust authentication requirements in real-time, adding an extra layer of security for high-risk logins while ensuring low-friction access for trusted users.

The solution also emphasizes centralized management, which enables IT teams to monitor and manage security policies and user access across the organization efficiently. With a user-friendly dashboard, administrators can easily identify potential security vulnerabilities and respond promptly to any threats. This centralized approach enhances the overall security posture of the organization.

RSA Security 4.3 integrates advanced analytics and machine learning, allowing organizations to detect anomalies and trends in user behavior. These capabilities help identify potential threats before they escalate, offering valuable insights into security events. This proactive approach to threat detection is crucial in a landscape where cyber attacks are becoming increasingly sophisticated.

In conclusion, RSA Security 4.3 stands out with its multi-factor authentication, risk-based authentication, centralized management, and advanced analytics. These features make it an essential tool for organizations striving to safeguard their digital assets and maintain compliance in an ever-changing cybersecurity environment. With its focus on flexibility and user experience, RSA Security 4.3 provides a comprehensive solution that helps organizations navigate the complexities of modern security challenges effectively.
Top Page Image Contents