Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

I would like to do the following on FIPS 140-3 Level 3 certified cryptographic t

ID: 654804 • Letter: I

Question

I would like to do the following on FIPS 140-3 Level 3 certified cryptographic token using PKCS#11:

1. Generate RSA key pair on token

2. Import AES key from multiple components

3. Wrap and export RSA private key with AES key (PKCS#8) into file

I am trying to do it with a few FIPS 140-2 Level 3 cryptographic token with no success. I am getting CKR_DEVICE_ERROR.

So I am asking if it is possible to do that? Does the compliance of FIPS 140-2 Level 3 allow to wrap and export private key from token? Or it is just the matter of implementation of PKCS#11?

Explanation / Answer

FIPS 140-2 does not explicitly forbid key export; what it says is that the module shall prevent unauthorized disclosure; it furthermore states that when a private key is exported from a module, it shall be done with encryption. The important word is "unauthorized": simply encrypting with an AES key is not enough; that key must also be such that it is known only to "authorized" systems or people, and this depends on a lot of other parts of FIPS 140-2. Basically, you cannot export a private key "generically" simply by virtue of having employed encryption; it must be part of some documented procedure that itself complies with the roles and constraints defined in FIPS 140-2, and has been evaluated as part of the process that allowed the module to be "certified FIPS 140-2 level 3".

To make the story short:

+ Some modules will never allow a private key to be exported, regardless of encryption.
+ Some modules will allow a private key to be exported only if, at key generation time, it was tagged as "extractable" (see the PKCS#11 "CKA_EXTRACTABLE" attribute).
+ Some modules will allow a private key to be exported but only as part of a fully-specified procedure that is covered by FIPS 140-2 level 3; in practice, this happens only for moving keys between two equally 140-2 compliant hardware modules.

It is very improbable that a certified FIPS 140-2 level 3 module allows unbounded private key export, only protected with an externally provided AES key, and is still FIPS 140-2 level 3.

Related Questions

I would like to ask something about project management. I got a project that has
Question #650982
I would like to ask which one of these TrueCrypt or BitLocker is safer to implem
Question #654099
I would like to ask why the pointer can be compared with another pointer. I have
Question #3719039
I would like to be able to measure magnetic fields that are generated by nerve i
Question #1382362
I would like to be promoted into management after obtaining my bachelors degree.
Question #331368
I would like to build a RESTful API where I need to get data from a RavenHQ-clou
Question #639688
I would like to build a simple linear regression and a multi-linear regression e
Question #3374927
I would like to build an Advertising project with PHP, MySQL, and Javascript. I
Question #646210

Navigate

Previous
I would like to do a survey of how you use mobile/digital platforms in your dail
Next
I would like to donate a lot of my time over the next few years to helping open