- ページ 19

ネットワーク・ルーター Cisco 3825 SeriesのPDF 非独占的セキュリティポリシーをオンラインで閲覧またはダウンロードできます。Cisco 3825 Series 30 ページ。 Integrated services routers
Cisco 3825 Series にも：インストールとアップグレード (20 ページ), クイック・スタート・マニュアル (38 ページ), クイック・スタート・マニュアル (40 ページ)

ページを印刷する

Table 8

Cryptographic Keys and CSPs (Continued)

Enable secret

Shared

Secret

RADIUS secret Shared

Secret

TACACS+

Shared

secret

Secret

All RSA operations are prohibited by policy, and commands that can be executed by Officer are shown

Note

"# command".

Table 9

SRDI/Role/Service Access Policy

Security Relevant Data Item

PRNG Seed

DH private exponent

DH public key

OL-8662-01

The ciphertext password of the CO role. However,

the algorithm used to encrypt this password is not

FIPS approved. Therefore, this password is

considered plaintext for FIPS purposes. This

password is zeroized by overwriting it with a new

password.

The RADIUS shared secret. This shared secret is

zeroized by executing the "no radius-server key"

command.

The TACACS+ shared secret. This shared secret is

zeroized by executing the "no tacacs-server key"

command.

Role and Service Access to CSP

Cisco 3825 and Cisco 3845 Integrated Services Routers FIPS 140-2 Non Proprietary Security Policy

Cisco 3825 and Cisco 3845 Routers

NVRAM

Overwrite with new

(plaintext or

password

encrypted)

NVRAM

"# no radius-server key"

(plaintext or

encrypted),

DRAM

(plaintext)

NVRAM

"# no tacacs-server key"

(plaintext or

encrypted),

DRAM

(plaintext)