Check out the new USENIX Web site. next up previous
Next: The Basic Key Management Up: Key management Previous: Group Sharing

Raw Key Management Scheme

TCFS provides a simple interface for users applications to pass keys to the kernel which we call the Raw Key Management Scheme (RKM, in short). By using the RKM API, an application can provide the key to the TCFS kernel. Subsequently, the TCFS kernel will use the key provided to perform encryptions and decryptions. No check is performed by the TCFS kernel on the key and the application has to make sure that the right key is passed to the kernel. The RKM scheme is not intended for the end user but only as a basis on top of which to build more sophisticated KM schemes.

Figure 1: Creating a TCFS user with the BKM Scheme
\begin{figure*} \centerline { \begin{tabular}{\vert lr\vert} \hline {\tt root\ch... ...char93 {\bf tcfsrmuser -u jack}} & \quad \\ \hline \end{tabular}}\end{figure*}


The TCFS Team
2001-04-27