000022443 - How are the keys in RSA ClearTrust's KeyClient.sec and KeyServer.sec files generated and used?

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000022443
Applies ToRSA ClearTrust
KeyServer.sec
KeyClient.sec
IssueHow are the keys in RSA ClearTrust's KeyClient.sec and KeyServer.sec files generated and used?
ResolutionThe symmetric keys stored in RSA ClearTrust's KeyClient.sec and KeyServer.sec files are generated by a call to java.security.SecureRandom.nextBytes(), subsequently base64 encoded and stored in the KeyClient/KeyServer file. See the JDK docs for more information regarding the SecureRandom class. The ClearTrust server then uses the first 64 bits of that key to DES encrypt/decrypt the messages data between the AServer and the dispatcher/keyserver.
Legacy Article IDa28506

Attachments

    Outcomes