HACKABLE SECURITY MODULES
RECON-BRX-2017-reversinghsms2
RECON-BRX-2017-reversinghsms2
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
MASTER BACKUP KEYS<br />
256 bit AES or 128 bit (?) 3DES Key<br />
Used to encrypt backups of cryptographic keys<br />
Can be split into many shares using an n out of<br />
m scheme (XOR for 2 out of 2, Shamir's Secret<br />
Sharing otherwise)<br />
Keys inside the HSM are not encrypted using the<br />
MBK but using the Device Key