canmove, Confirmed users
937
edits
NSSCryptoModuleSpec/Section 9: Self Tests: Difference between revisions
NSSCryptoModuleSpec/Section 9: Self Tests (view source)
Revision as of 01:20, 2 August 2006
, 2 August 2006no edit summary
No edit summary |
No edit summary |
||
| Line 53: | Line 53: | ||
performed by the module''' | performed by the module''' | ||
|| | || | ||
[http://wiki.mozilla.org/VE_09#VE.09.07.01 VE.09.07.01 ] | [http://wiki.mozilla.org/VE_09#VE.09.07.01 VE.09.07.01 ] [http://wiki.mozilla.org/VE_09#VE.09.13.01 VE.09.13.01 ] [http://wiki.mozilla.org/VE_09#VE.09.16.01 VE.09.16.01 ] | ||
|| | || | ||
The module can perform the following self-tests: | The module can perform the following self-tests: | ||
* Power-up self-tests | * Power-up self-tests | ||
** Cryptographic algorithm tests | ** Cryptographic algorithm tests: A known-answer test is conducted for all cryptographic functions (e.g., encryption, decryption, authentication and random number generation) of each cryptographic algorithm implemented by the cryptographic module: RC2, RC4, DES, Triple DES, AES-128, AES-192, AES-256, MD2, MD5, SHA-1, SHA-256, SHA-384, SHA-512, HMAC-SHA-1, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512, RSA, DSA, RNG, and ECDSA ([http://www.mozilla.org/projects/security/pki/nss/fips/nss-source/mozilla/security/nss/lib/softoken/fipstest.c.html source code]). Note that the message digest algorithms have independent known-answer tests. | ||
** Software integrity test | ** Software integrity test | ||
* Conditional self-tests | * Conditional self-tests | ||
| Line 104: | Line 104: | ||
|| | || | ||
The operator can initiate the power-up self-tests on demand by calling the <code>FC_Finalize</code> and <code>FC_Initialize</code> functions to shut down and restart the module. | The operator can initiate the power-up self-tests on demand by calling the <code>FC_Finalize</code> and <code>FC_Initialize</code> functions to shut down and restart the module. | ||
|| Draft | || Draft | ||
|- | |- | ||