psa-storage-resilience.md - OpenGrok cross reference for /mbedtls-latest/docs/architecture/psa-storage-resilience.md

Lines Matching refs:keys
34 For a transparent key, all key management operations (creation or destruction) on persistent keys r…
38 * [Key management for stateful secure element keys](#designing-key-management-for-secure-element-ke…
40 …n the library design, and we do not need to perform any testing of resilience for transparent keys.
44 ## Designing key management for secure element keys
46 …in a stateful secure element, i.e. a secure element that stores keys. This excludes keys in a stat…
54 ### Dual management of keys: the problem  argument
121 … cannot be used for this purpose because there is no way to enumerate all keys (and even if there …
133 …ions will explore the format of the transaction list, as well as how many keys it needs to contain.
154 From the analysis above, assuming that all keys are treated in the same way, there are 4 possible s…
211 Recovery means removing all traces of all keys on the transaction list. This means following the de…
236 Recovery means removing all traces of all keys on the transaction list. This means following the de…
246 * The flow of information is somewhat different from transparent keys and keys in stateless secure …
301 …me of the transaction list file does not depend on the identifiers of the keys in the list, but th…
303 …ss, the state of the secure element must be consistent with references to keys in that secure elem…
353 In addition, testing should adequately cover the case of multiple keys in the transaction list. How…
391 …n [“Designing key management for secure element keys”](#designing-key-management-for-secure-elemen…
464 …ds reading bad data if Mbed TLS is upgraded to a different integration that names keys differently.
498 …all keys in storage, and does not need to (for example, it would be pointless to check anything ab…
501 * When invoked from the test hook on the transaction file: on all the keys listed in the transactio…
506 Some tests set global variables to indicate which persistent keys they manipulate. We instrument at…
519     * Call the secure element test driver to create keys without going throught the PSA API.
521 3. On success, check that the expected keys exist, and that keys that are expected to have been des…