[23.10 FEAT] [SEC2113] openCryptoki cca token: protected key support
Bug #2025923 reported by
bugproxy
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu on IBM z Systems |
Fix Released
|
Medium
|
Skipper Bug Screeners | ||
opencryptoki (Ubuntu) |
Fix Released
|
High
|
Unassigned |
Bug Description
Introduce a vendor specific key attribute for CCA keys (reuses attribute that was introduced for analogous EP11 epic) that determines that a key with that attribute shall be transformed into a protected key and the protected key shall be used whenever possible.
Provide an option to the cca token instance defining that CCA secure keys of a certain type (e.g. AES or ECDSA keys) shall be transformed into protected keys and the protected keys shall be used whenever possible.
tags: | added: architecture-s39064 bugnameltc-202905 severity-high targetmilestone-inin2310 |
Changed in ubuntu: | |
assignee: | nobody → Skipper Bug Screeners (skipper-screen-team) |
affects: | ubuntu → linux (Ubuntu) |
affects: | linux (Ubuntu) → opencryptoki (Ubuntu) |
Changed in ubuntu-z-systems: | |
assignee: | nobody → Skipper Bug Screeners (skipper-screen-team) |
Changed in opencryptoki (Ubuntu): | |
assignee: | Skipper Bug Screeners (skipper-screen-team) → nobody |
importance: | Undecided → High |
Changed in ubuntu-z-systems: | |
importance: | Undecided → Medium |
summary: |
- [23.10] [SEC2113] openCryptoki cca token: protected key support + [23.10 FEAT] [SEC2113] openCryptoki cca token: protected key support |
Changed in ubuntu-z-systems: | |
status: | New → Fix Released |
information type: | Private → Public |
To post a comment you must log in.
------- Comment From <email address hidden> 2023-07-04 18:42 EDT------- /github. com/opencryptok i/opencryptoki/ releases/ tag/v3. 21.0
This feature is included in the latest openCryptoki version 3.21.0 as available from:
https:/