Lines Matching refs:a

5 The PSA crypto subsystem includes a persistent key store. It is possible to create a persistent key…
7a test strategy for the key store that not only validates that it's possible to load a key that wa…
9 Interoperability is not a goal: PSA crypto implementations are not intended to have compatible stor…
13 ### Limitations of a direct approach
15 The goal of storage format stability testing is: as a user of Mbed TLS, I want to store a key under…
19 …d reading it back under version W. Done naively, this would require keeping a large amount of test…
23a key is deterministic. Therefore we can ensure the stability of the storage format by creating te…
27 …es. When the test later runs under version W ≥ V, it creates and reads back a storage state which …
29 … that version W can read back what version V wrote. From the perspective of a particular version o…
31 Use a similar approach for files other than keys where possible and relevant.
37a single version of Mbed TLS, since there would be no indication that more test cases used to exis…
39 … be done by retiring a version of the storage format), then we should keep the corresponding test …
43 …age interface. The state of the storage is a mapping from file identifier (a 64-bit number) to fil…
50 For a more detailed description, refer to the [Mbed TLS storage specification](../mbed-crypto-stora…
52 … addresses the test strategy for [PSA ITS over file](#psa-its-over-file) in a separate section bel…
62 Method: Create a key with a given identifier (using `psa_import_key`) and verify that a file with t…
68 Method: Create a key with certain metadata with `psa_import_key`. Read the file content and validat…
72 …ficient to have assurance that all keys are stored correctly. This requires a sufficient selection…
74 In particular, the tests must validate that each `PSA_xxx` constant that is stored in a key is cove…
83 Method: Each test case creates a key with `psa_import_key`, purges it from memory, then reads it ba…
85 … knowledge of what attributes (sizes, algorithms, …) and content to use for keys of a certain type.
93 * For alternative locations: have tests conditional on the presence of a driver for that location.
94 …nce levels. We may also want to have negative tests ensuring that keys with a not-supported persis…