background image
Introduction
4
1 Introduction
This is a nonproprietary RSA cryptographic module security policy. This security policy describes how
RSA BSAFE CryptoC Micro Edition (CryptoC ME) meets the security requirements of FIPS 1402, and
how to securely operate CryptoC ME in a FIPS 1402compliant manner. This policy is prepared as part
of the FIPS 1402 Level 1 validation of CryptoC ME.
FIPS 1402 (Federal Information Processing Standards Publication 1402 ­ Security Requirements for
Cryptographic Modules) details the United States Government requirements for cryptographic modules.
More information about the FIPS 1402 standard and validation program is available on the NIST Web
site at http://csrc.nist.gov/cryptval/.
1.1 References
This document deals only with the operations and capabilities of CryptoC ME in the technical terms of
a FIPS 1402 cryptographic module security policy. More information about CryptoC ME and the entire
RSA BSAFE product line is available from the following resources:
·
Information on the full line of RSA products and services is available at http://www.rsa.com/.
·
RSA BSAFE product overviews are available at http://www.rsa.com/node.asp?id=1204.
·
Answers to technical or sales related questions are available at
http://www.rsasecurity.com./node.asp?id=1067.
1.2 Document Organization
This document explains the CryptoC ME FIPS 1402 relevant features and functionality. This document
consists of the following sections:
·
This section, Introduction, provides an overview and introduction to the Security Policy.
·
CryptoC ME Cryptographic Toolkit on page 5 describes CryptoC ME and how it meets FIPS 140
2 requirements.
·
Secure Operation of CryptoC ME on page 14 specifically addresses the required configuration for
the FIPS 1402 mode of operation.
·
Services on page 18 lists all of the functions of CryptoC ME.
·
Acronyms and Definitions on page 22 lists the acronyms and definitions used in this document.