Part 1: General - Computer Security Resource Center - National ...

More documents

Recommendations

Info

Cryptographic key (key) March, 2007 A parameter used in conjunction with a cryptographic algorithm that determines its operation in such a way that an entity with knowledge of the key can reproduce or reverse the operation, while an entity without knowledge of the key cannot. Examples include: 1. The transformation of plaintext data into ciphertext data, 2. The transformation of ciphertext data into plaintext data, 3. The computation of a digital signature from data, 4. The verification of a digital signature, 5. The computation of an authentication code from data, 6. The verification of an authentication code from data and a received authentication code, 7. The computation of a shared secret that is used to derive keying material. Cryptographic key One of at least two parameters that have the same security properties component (key (e.g., randomness) as a cryptographic key; parameters are combined in component) an Approved security function to form a plaintext cryptographic key before use. Cryptographic module The set of hardware, software, and/or firmware that implements Approved security functions (including cryptographic algorithms and key generation) and is contained within the cryptographic boundary. Cryptomodule See cryptographic module. Cryptoperiod The time span during which a specific key is authorized for use or in which the keys for a given system or application may remain in effect. Data integrity A property whereby data has not been altered in an unauthorized manner since it was created, transmitted or stored. In this recommendation, the statement that a cryptographic algorithm "provides data integrity" means that the algorithm is used to detect unauthorized alterations. Decryption The process of changing ciphertext into plaintext using a cryptographic algorithm and key. Deterministic random An algorithm that produces a sequence of bits that are uniquely bit generator (DRBG) determined from an initial value called a seed. The output of the DRBG “appears” to be random, i.e., the output is statistically indistinguishable from random values. A cryptographic DRBG has the additional property that the output is unpredictable, given that the seed is not known. A DRBG is sometimes also called a Pseudo Random Number Generator (PRNG) or a deterministic random number generator. 21
March, 2007 Digital signature The result of a cryptographic transformation of data that, when properly implemented with supporting infrastructure and policy, provides the services of: 1. origin authentication 2. data integrity, and 3. signer non-repudiation. Distribution See key distribution. Domain parameter A parameter used in conjunction with some public key algorithms to generate key pairs, to create digital signatures, or to establish keying material. Encrypted key A cryptographic key that has been encrypted using an Approved security function with a key encrypting key in order to disguise the value of the underlying plaintext key. Encryption The process of changing plaintext into ciphertext using a cryptographic algorithm and key. Entity An individual (person), organization, device or process. Ephemeral key A cryptographic key that is generated for each execution of a key establishment process and that meets other requirements of the key type (e.g., unique to each message or session). In some cases ephemeral keys are used more than once, within a single “session (e.g., broadcast applications) where the sender generates only one ephemeral key pair per message and the private key is combined separately with each recipient’s public key. Hash-based message A message authentication code that uses an Approved keyed hash authentication code function (i.e., FIPS 198). (HMAC) Hash function A function that maps a bit string of arbitrary length to a fixed length bit string. Approved hash functions satisfy the following properties: 1. (One-way) It is computationally infeasible to find any input that maps to any pre-specified output, and 2. (Collision resistant) It is computationally infeasible to find any two distinct inputs that map to the same output. Hash value The result of applying a hash function to information. Identifier A bit string that is associated with a person, device or organization. It may be an identifying name, or may be something more abstract (for example, a string consisting of an IP address and timestamp), depending on the application. Identity The distinguishing character or personality of an individual or entity. 22
Page 1 and 2: ARCHIVED PUBLICATION The attached p
Page 3 and 4: Abstract March, 2007 This Recommend
Page 5 and 6: Authority March, 2007 This document
Page 7 and 8: March, 2007 key validation, account
Page 9 and 10: March, 2007 4.2.4.1 DSA............
Page 11 and 12: March, 2007 8 KEY MANAGEMENT PHASES
Page 13 and 14: March, 2007 10.2.9 Compromise Manag
Page 15 and 16: March, 2007 Figure 3: Key states an
Page 17 and 18: March, 2007 1.2 Audience The audien
Page 19 and 20: March, 2007 1. Section 1, Introduct
Page 21: March, 2007 Backup A copy of inform
Page 25 and 26: Key Management Policy Key Managemen
Page 27 and 28: Proof of possession (POP) Pseudoran
Page 29 and 30: March, 2007 Split knowledge A proce
Page 31 and 32: March, 2007 3 Security Services Cry
Page 33 and 34: March, 2007 However, it is often th
Page 35 and 36: March, 2007 4 Cryptographic Algorit
Page 37 and 38: March, 2007 operates on blocks (chu
Page 39 and 40: March, 2007 minimum key size 7 of 1
Page 41 and 42: March, 2007 2. The protocols trigge
Page 43 and 44: March, 2007 7. Symmetric key wrappi
Page 45 and 46: March, 2007 9. Random numbers: The
Page 47 and 48: March, 2007 In general, where stron
Page 49 and 50: March, 2007 a. When a symmetric key
Page 51 and 52: March, 2007 information. For less s
Page 53 and 54: 8. Symmetric and Asymmetric RNG key
Page 55 and 56: 15. Private ephemeral key agreement
Page 57 and 58: Key Type 12. Symmetric Key Agreemen
Page 59 and 60: March, 2007 establishment keys, see
Page 61 and 62: March, 2007 c. Restricting plaintex
Page 63 and 64: March, 2007 algorithms completely i
Page 65 and 66: March, 2007 Table 3: Hash function
Page 67 and 68: Table 4: Recommended algorithms and
Page 69 and 70: March, 2007 size is available, the
Page 71 and 72: Security life of data up to 4 years
Page 73 and 74:
March, 2007 6 Protection Requiremen
Page 75 and 76:
Table 5: Protection requirements fo
Page 77 and 78:
Key Type Security Service Private e
Page 79 and 80:
March, 2007 Crypto. Security Securi
Page 81 and 82:
March, 2007 may be applied only to
Page 83 and 84:
March, 2007 All cryptographic infor
Page 85 and 86:
March, 2007 8. Domain parameters (e
Page 87 and 88:
March, 2007 6. Destroyed Compromise
Page 89 and 90:
March, 2007 a. A private signature
Page 91 and 92:
2 Pre-Operational Phase 3 7 1 4 Ope
Page 93 and 94:
March, 2007 8.1 Pre-operational Pha
Page 95 and 96:
8.1.5.1.1 Distribution of Static Pu
Page 97 and 98:
March, 2007 and then provide eviden
Page 99 and 100:
March, 2007 listed in Section 8.1.5
Page 101 and 102:
March, 2007 encrypting key or publi
Page 103 and 104:
March, 2007 8.1.5.3.5 Intermediate
Page 105 and 106:
March, 2007 of keying material and
Page 107 and 108:
March, 2007 2. The application in w
Page 109 and 110:
March, 2007 and the key derivation
Page 111 and 112:
March, 2007 Type of Key Archive? Re
Page 113 and 114:
March, 2007 All records of the enti
Page 115 and 116:
March, 2007 other cryptographic inf
Page 117 and 118:
March, 2007 access to information e
Page 119 and 120:
March, 2007 1. Private key used to
Page 121 and 122:
March, 2007 10.2 Content of the Key
Page 123 and 124:
March, 2007 Management Specificatio
Page 125 and 126:
March, 2007 is the same value as th
Page 127 and 128:
March, 2007 If the decision is made
Page 129 and 130:
March, 2007 only, and then shall be
Page 131 and 132:
March, 2007 may be stored in backup
Page 133 and 134:
March, 2007 and the method of key r
Page 135 and 136:
March, 2007 ephemeral key pairs, an
Page 137 and 138:
B.3.14.7 Key Control Information Ma
Page 139 and 140:
March, 2007 to be saved. Keys for t
Page 141 and 142:
[HAC] Handbook of Applied Cryptogra
Page 143:
March, 2007 the owner by the CA tha
show all

Part 1: General - Computer Security Resource Center - National ...

Create successful ePaper yourself

Delete template?

Save as template?