Red Hat DIRECTORY SERVER 8.0 Manual do Utilizador descarregar pdf (Página 5)

nCipher Modules: Integration Guide for Red Hat Certificate System 8.0 1.0 5

Supported nCipher functionality

Additional documentation produced to support your Thales nCipher product can be found in the

document directory of the CD-ROM or DVD-ROM for that product.

Note Throughout this guide, the term HSM refers to nShield Solo, nShield Connect, and netHSM

products. (nShield Solo products were formerly known as nShield.)

Supported nCipher functionality

Requirements

To integrate the HSM and Red Hat Certificate System, you need the server and client machines

to be setup as follows:

We also recommend that there be an agreed organizational Certificate Practices Statement and

Security Policy/Procedure in place covering administration of the HSM. In particular, these

documents should specify the following aspects of HSM administration:

• The number and quorum of Administrator Cards in the Administrator Card Set (ACS), and

the policy for managing these cards.

• Whether the application keys are to be protected by Softcard or Operator Card Set (OCS).

• The number and quorum of Operator Cards in the OCS (only 1-of-N is supported), and the

policy for managing these cards.

• Whether the security world should be compliant with FIPS 140-2 level 3.

For more information, see the User Guide for the HSM.

Key Generation Yes 1-of-N Operator Card Set Yes Strict FIPS Support Yes

Key Management Yes K-of-N Operator Card Set — Load Sharing Yes

Key Import — Softcards Yes Fail Over Yes

Key Recovery — Module-only Key —

Hardware Software

Server Red Hat Enterprise Linux 5.6 Thales nCipher support software

11.50

Red Hat Certificate System 8.0

Red Hat Directory Server 8.1

Client Windows Operating System (Tested with Windows

Server 2003)

Firefox 3.15.0 or latest

1 2 3 4 5 6 7 8 9 10 ... 17 18

Sem comentários

Red Hat DIRECTORY SERVER 8.0 Manual do Utilizador Página 5