Encryption algorithm used to store the PKI Store on the SSL Visibility appliances
search cancel

Encryption algorithm used to store the PKI Store on the SSL Visibility appliances

book

Article ID: 381210

calendar_today

Updated On: 11-04-2024

Products

SSL Visibility Appliance Software

Issue/Introduction

SSL Visibility Appliances store cryptographically sensitive data.  They may use cryptographic keys and certificates loaded onto the appliance, or it may use keys and certificates generated on the appliance, or a combination of both.

Resolution

The SSL Visibility appliance stores all cryptographically sensitive data in the secure store. Secure store data is encrypted using an AES CBC 256 bit key and saved on an internal solid-state drive.  When necessary to decrypt data from the secure store, the SSLV only stores it to volatile memory. Clear text copies of the cryptographic keys are never written to the SSD.