Using the security features, Creating password and signature key pairs – Palm Tungsten W User Manual

Page 280

background image

Chapter 18

Using Palm™ WAP Browser

266

Using the security features

The Palm WAP Browser uses the Public Key Infrastructure (PKI) method to
exchange secure messages between you and another party. PKI is based on the use
of a password key pair and a signature key pair. Each key pair has one public key
and one signed key. The public key can be available to anyone, but you must store
the signed key securely. All security of a PKI solution is based on the integrity of
the signed key.

The public key is exchanged between you and another party using a certificate
created and signed by a trusted Certificate Authority (CA). (The process of creating
certificates and using a CA is beyond the scope of this chapter.) You can use the
same key pair for several certificates.

All certificates are stored in the WAP Identity Module (WIM). The WIM is a
storage area designed to store certificates, your private keys, and secure session
data used to establish a secure connection. Usually the WIM is a smart card. Palm
WAP Browser uses a software WIM that has the same functionality.

Palm WAP Browser uses the following two protective passwords:

Password:

Protects the password key pair. This password also protects the WIM

and must be entered every time you access any content in the WIM.

Signature:

Protects the signature key pair. This signature is used only when you

are asked to verify that you accept something asked for by another, such as a
bank transfer.

Palm WAP Browser allows you to create multiple password and signature key
pairs. Each type of key pair is protected by a password or signature that you create.
You have only one password and one signature even if you have multiple key
pairs. You can change the password and signature at any time.

Creating password and signature key pairs

To protect your transactions, you need to create a password key pair. If you are
signing documents, you will also need to create a signature key pair.

IMPORTANT

Key generation can take up to an hour. During this time, your handheld

appears to be completely frozen and you are not able to use your handheld.

You can create a password and signature key pair by opening the Generate Keys
dialog box from the Options menu. You select which kind of key pair you want to
generate: password or signature.

If this is the first time that you have generated the selected type of key pair, you
must enter a password or signature to protect access to and usage of the keys. If
you have already generated this type of key pair, you must enter the
corresponding password or signature to continue the key generation.