OpenHSM: An Open Key Life Cycle Protocol for Public Key Infrastructure’s Hardware Security Modules

2007 ◽  
pp. 220-235 ◽  
Author(s):  
Jean Everson Martina ◽  
Tulio Cicero Salvaro de Souza ◽  
Ricardo Felipe Custodio
Keyword(s):  
Life Cycle ◽  
Hardware Security ◽  
Public Key ◽  
Hardware Security Modules

Key Management

2017 ◽  
Author(s):  
Keith M. Martin
Keyword(s):  
Key Management ◽  
Hardware Security ◽  
Key Generation ◽  
Short Discussion ◽  
Key Establishment ◽  
Cryptographic Key ◽  
Hardware Security Modules ◽  
Key Derivation

This chapter provides an understanding of the fundamental principles behind key management. We consider the typical stages in the lifecycle of a cryptographic key and then review each of these stages in some detail. We discuss the choosing of key lengths and look at different techniques for key generation, including key derivation and generation from components. We then look at different techniques for key establishment, including the use of key hierarchies, key wrapping, and quantum key establishment. We then look at key storage and discuss the role of hardware security modules. We also consider key separation, key change, and key destruction, before closing with a short discussion on governance of key management.

Electronic Voting Using Identity Domain Separation and Hardware Security Modules

2012 ◽  
pp. 100-114
Author(s):  
Thomas Rössler
Keyword(s):  
Identity Management ◽  
Hardware Security ◽  
Electronic Voting ◽  
The Internet ◽  
Security Issues ◽  
Novel Approach ◽  
Voting System ◽  
Management Concept ◽  
Hardware Security Modules ◽  
Domain Separation

E-voting increasingly gains interest in e-Democracy and e-Government movements. Not only the technical security issues of electronic voting systems are of paramount importance, but also the necessity of following an all-embracing approach is challenging and needs to be addressed. This paper discusses e-voting as being a supreme discipline of e-Government. It introduces an innovative e-voting concept using the Internet as the voting channel. The concept introduced is based on Austrian e-Government elements and the Austrian identity management concept in particular. This paper presents a novel approach of building an e-voting system relying on two core principles: strong end-to-end encryption and stringent identity domain separation.

Fault-injection based backdoors in Pseudo Random Number Generators

2015 ◽  
Vol 52 (2) ◽  
pp. 233-245 ◽  
Author(s):  
Norbert Tihanyi
Keyword(s):  
Embedded Systems ◽  
Random Number ◽  
Fault Injection ◽  
Hardware Security ◽  
Smart Cards ◽  
Random Number Generators ◽  
Pseudo Random Number ◽  
Injection Techniques ◽  
Hardware Security Modules

The main aim of this paper is to present the concept of fault-injection backdoors in Random Number Generators. Backdoors can be activated by fault-injection techniques. Presented algorithms can be used in embedded systems like smart-cards and hardware security modules in order to implement subliminal channels in random number generators.

Sign in / Sign up

Export Citation Format

Share Document