Пакет pki-tks: Информация
Бинарный пакет: pki-tks
Версия: 10.2.6-alt4_19jpp8.M80P.2
Архитектура: noarch
Собран: 1 апреля 2019 г. 20:34 в задании #225227
Исходный пакет: pki-core
Категория: Система/Серверы
Сообщить об ошибке в пакетеДомашняя страница: http://pki.fedoraproject.org/
Лицензия: GPLv2
О пакете: Certificate System - Token Key Service
Описание:
The Token Key Service (TKS) is an optional PKI subsystem that manages the
master key(s) and the transport key(s) required to generate and distribute
keys for hardware tokens. TKS provides the security between tokens and an
instance of Token Processing System (TPS), where the security relies upon the
relationship between the master key and the token keys. A TPS communicates
with a TKS over SSL using client authentication.
TKS helps establish a secure channel (signed and encrypted) between the token
and the TPS, provides proof of presence of the security token during
enrollment, and supports key changeover when the master key changes on the
TKS. Tokens with older keys will get new token keys.
Because of the sensitivity of the data that TKS manages, TKS should be set up
behind the firewall with restricted access.
This package is one of the top-level java-based Tomcat PKI subsystems
provided by the PKI Core used by the Certificate System.
==================================
|| ABOUT "CERTIFICATE SYSTEM" ||
==================================
Certificate System (CS) is an enterprise software system designed
to manage enterprise Public Key Infrastructure (PKI) deployments.
PKI Core contains ALL top-level java-based Tomcat PKI components:
* pki-symkey
* pki-base
* pki-tools
* pki-server
* pki-ca
* pki-kra
* pki-ocsp
* pki-tks
* pki-tps
* pki-javadoc
which comprise the following corresponding PKI subsystems:
* Certificate Authority (CA)
* Data Recovery Manager (DRM)
* Online Certificate Status Protocol (OCSP) Manager
* Token Key Service (TKS)
* Token Processing Service (TPS)
For deployment purposes, PKI Core contains fundamental packages
required by BOTH native-based Apache AND java-based Tomcat
Certificate System instances consisting of the following components:
* pki-tools
Additionally, PKI Core contains the following fundamental packages
required ONLY by ALL java-based Tomcat Certificate System instances:
* pki-symkey
* pki-base
* pki-tools
* pki-server
PKI Core also includes the following components:
* pki-javadoc
Finally, if Certificate System is being deployed as an individual or
set of standalone rather than embedded server(s)/service(s), it is
strongly recommended (though not explicitly required) to include at
least one PKI Theme package:
* dogtag-pki-theme (Dogtag Certificate System deployments)
* dogtag-pki-server-theme
* redhat-pki-server-theme (Red Hat Certificate System deployments)
* redhat-pki-server-theme
* customized pki theme (Customized Certificate System deployments)
* <customized>-pki-server-theme
NOTE: As a convenience for standalone deployments, top-level meta
packages may be provided which bind a particular theme to
these certificate server packages.Сопровождающий: Stanislav Levin
Последнее изменение
18 марта 2019 г. Stanislav Levin 10.2.6-alt4_19jpp8.M80P.2
- Fixed ACL evaluation in allow,deny mode (fixes: CVE-2018-1080). - Fixed Javadoc build. - Fixed intersections with filesystem.
15 февраля 2017 г. Mikhail Efremov 10.2.6-alt4_19jpp8.M80P.1
- Build for p8.
15 февраля 2017 г. Igor Vlasenko 10.2.6-alt5_19jpp8
- thanks to sem@ - fixed build - changed port to 8090