beautypg.com

Viewing the import key section, Import key section components – HP Secure Key Manager User Manual

Page 133

background image

IMPORTANT:

The server will not import keys that are known to be weak, such as 64 bit DES. In addition, the parity
bits must be set properly; otherwise, the server returns an error.

Figure 58 Viewing the Import Key section

The following table describes the components of the Import Key section.

Table 39 Import Key section components

Description

Component

This is the name that the server uses to refer to the key. The key name must begin with
a letter, it must be between 1 and 64 characters (inclusive), and it can consist of letters,
numbers, underscores (_), periods (.), and hyphens (-).

Key Name

When you import and export keys, metadata such as key ownership is not retained.
As such, any previous owner assigned to a key must be re-assigned once the key is
imported. You do not have to specify an owner for the key; if you leave that field blank,
the imported key is a global key and therefore accessible to all users. If you want to
assign an owner for the key, you can specify any valid user in the Owner Username
field. If you assign an owner, then that user is the only user who can access the key
(unless the key is given additional group permissions later).

Owner Username

The algorithm is any one of the following:

AES

DES-EDE

DES

RC4

HmacSHA1

RSA

NOTE:

Some of the algorithms listed above will not be available on FIPS-compliant
devices.

Algorithm

Secure Key Manager

133