| Skip Navigation Links | |
| Exit Print View | |
|
Oracle Solaris 11.1 Administration: Security Services Oracle Solaris 11.1 Information Library |
| Skip Navigation Links | |
| Exit Print View | |
|
|
Oracle Solaris 11.1 Administration: Security Services Oracle Solaris 11.1 Information Library |
1. Security Services (Overview)
Part II System, File, and Device Security
2. Managing Machine Security (Overview)
3. Controlling Access to Systems (Tasks)
4. Virus Scanning Service (Tasks)
5. Controlling Access to Devices (Tasks)
6. Verifying File Integrity by Using BART (Tasks)
7. Controlling Access to Files (Tasks)
Part III Roles, Rights Profiles, and Privileges
8. Using Roles and Privileges (Overview)
9. Using Role-Based Access Control (Tasks)
10. Security Attributes in Oracle Solaris (Reference)
Part IV Cryptographic Services
11. Cryptographic Framework (Overview)
Introduction to the Cryptographic Framework
Terminology in the Cryptographic Framework
Scope of the Cryptographic Framework
Administrative Commands in the Cryptographic Framework
User-Level Commands in the Cryptographic Framework
Binary Signatures for Third-Party Software
Plugins to the Cryptographic Framework
Cryptographic Services and Zones
Cryptographic Framework and FIPS-140
12. Cryptographic Framework (Tasks)
Part V Authentication Services and Secure Communication
14. Using Pluggable Authentication Modules
17. Using Simple Authentication and Security Layer
18. Network Services Authentication (Tasks)
19. Introduction to the Kerberos Service
20. Planning for the Kerberos Service
21. Configuring the Kerberos Service (Tasks)
22. Kerberos Error Messages and Troubleshooting
23. Administering Kerberos Principals and Policies (Tasks)
24. Using Kerberos Applications (Tasks)
25. The Kerberos Service (Reference)
The Cryptographic Framework supplies the SPARC T-Series systems with cryptographic mechanisms, and optimizes some mechanisms for these servers. Three cryptographic mechanisms are optimized for data at rest and in motion: AES-CBC, AES-CFB128, and ARCFOUR. Several cryptographic mechanisms are optimized for OpenSSL: DES, and by optimizing arbitrary-precision arithmetic (bignum), RSA and DSA. Other optimizations include small packet performance for handshakes and data in motion.
The following cryptographic mechanisms are available in this release:
AES-XTS – Used for data at rest
SHA-224 – SHA2 mechanism
AES-XCBC-MAC – Used for IPsec
|