RSA key information
Detailed information about a key selected in information tree consists of following data:
- Container name
- Name of container on the card where a key is saved.
- Private key name for PKCS#11
- The label of the private key used in the applications that communicate with the card through
PKCS#11 interface.
Optional entry.
- Public key name for PKCS#11
- The label of the public key used in the applications that communicate with the card through
PKCS#11 interface.
Optional entry.
- Key length
- In bits.
- Default key
- CA public key
- Text includes information whether the key is the public key of a certification authority.
Card Manager doesn't allow you to delete certificate authority's key from the card. It's not possible to verify integrity of this key either.
- Hardware generated key
- Text includes information whether the key was generated by hardware.
Key generated by hardware was generated inside the card's chip; it wasn't generated externally and then imported into card. Such a (private) key never leaves the card's chip: it's created inside the chip, it can't be read from the card and it can be only used or deleted. Every operation with private key is run inside the card's chip. This way of key handling greatly increases protection and security of electronic identity.
- Enabled operations
- List of operations that can be carried out with the key. The options are: signing and verification of signature, encryption and decryption.
Detailed options of key use are defined in the certificate; it depends on the security policy of the certification authority.
- Key export allowed
- Option to export the key into file.
- Integrity test allowed
- If available, this option appears in the text. CA public key integrity can't be tested.
- Delete key allowed
- If available, this option appears in the text. It's not possible to delete CA public key.
- Import certificate
- If the key has no respective certificate, import option appears in the text.
If saving process was interrupted (or any other nonstandard process occurred), an empty container - space for a key remains on the card. Program offers to delete it.
Key respective certificates are listed at the bottom of the key information.
Click on more information to see
detailed information about selected certificate.