Part 1: General - Computer Security Resource Center - National ...
Part 1: General - Computer Security Resource Center - National ...
Part 1: General - Computer Security Resource Center - National ...
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Key Type <strong>Security</strong><br />
Service<br />
Symmetric key<br />
wrapping key<br />
Symmetric and<br />
asymmetric<br />
RNG keys<br />
Symmetric<br />
master key<br />
<strong>Security</strong><br />
Protection<br />
Support Archive;<br />
Integrity;<br />
Confidentiality<br />
Support Integrity;<br />
Confidentiality<br />
Support Archive;<br />
Integrity;<br />
Confidentiality<br />
Association<br />
Protection<br />
Usage or<br />
application;<br />
Other authorized<br />
entities;<br />
Encrypted keys<br />
Assurances<br />
Required<br />
Usage or application Possession of<br />
private RNG<br />
key if used<br />
Usage or<br />
application;<br />
Other authorized<br />
entities;<br />
Derived keys<br />
March, 2007<br />
Period of Protection<br />
From generation until the<br />
end of the cryptoperiod or<br />
no wrapped keys require<br />
protection, whichever is<br />
later.<br />
From generation until<br />
replaced<br />
From generation until the<br />
end of the cryptoperiod or<br />
the end of the lifetime of the<br />
derived keys, whichever is<br />
later.<br />
Private key Support Archive; Usage or Possession From generation until the<br />
transport key<br />
Integrity;<br />
Confidentiality<br />
application;<br />
Encrypted keys;<br />
Public key transport<br />
key<br />
end of the period of<br />
protection for all transported<br />
keys<br />
Public key Support Integrity Usage or Validity From generation until the<br />
transport key application; end of the cryptoperiod<br />
Symmetric key<br />
agreement key<br />
Support Archive;<br />
Integrity;<br />
Confidentiality<br />
Key pair owner;<br />
Private key transport<br />
key<br />
Usage or<br />
application;<br />
Other authorized<br />
entities<br />
From generation until the<br />
end of the cryptoperiod or<br />
no longer needed to<br />
determined a key,<br />
whichever is later<br />
Private static Support Archive; Usage or Possession From generation until the<br />
key agreement<br />
key<br />
Integrity;<br />
Confidentiality<br />
application;<br />
Domain parameters;<br />
end of the cryptoperiod or<br />
no longer needed to<br />
determine a key, whichever<br />
Public static key<br />
agreement key<br />
is later<br />
Public static Support Archive; Usage or Validity From generation until the<br />
key agreement<br />
key<br />
Integrity<br />
application;<br />
Key pair owner;<br />
end of the cryptoperiod or<br />
no longer needed to<br />
determine a key, whichever<br />
Domain parameters;<br />
is later<br />
Private static key<br />
agreement key<br />
75