1 [SEC-CAPABILITY_USEAUTH-0001-002]

     2 <actionbody>

     3 	<mode>manager</mode>

     4 </actionbody>

     5 

     6 [SEC-CAPABILITY_USEAUTH-0001-003]

     7 <actionbody>

     8 	<keyusage>allusagesbutNR</keyusage>

     9 	<keysize>512</keysize>

    10 	<keylabel>additionalkey</keylabel>

    11 	<keyalgorithm>RSA</keyalgorithm>

    12 	<keyaccesstype>Extractable</keyaccesstype>

    13 	<authexpression>strong</authexpression>

    14 	<freshness>200</freshness>

    15 </actionbody>

    16 

    17 [SEC-CAPABILITY_USEAUTH-0002-001]

    18 <actionbody>

    19 	<testexe>t_keystore.exe</testexe>

    20 	<excludedcapabilities>

    21 	<capability>TCB</capability>

    22 	</excludedcapabilities>

    23 	<policy>

    24 	<capability>WriteUserData</capability>

    25 	</policy>

    26 

    27 	<preactions>

    28 	<action>

    29 		<actionname>1, Open key store in manager mode</actionname>

    30 		<actiontype>init</actiontype>

    31 		<actionbody>

    32 			<mode>manager</mode>

    33 		</actionbody>

    34 		<actionresult>

    35 			<return>KErrNone</return>

    36 		</actionresult>

    37 	</action>

    38 	</preactions>

    39 

    40 	<passactions>

    41 	<action>

    42 		<actionname>Add key banana</actionname>

    43 		<actiontype>addkey</actiontype>

    44 		<actionbody>

    45 			<keyusage>allusagesbutNR</keyusage>

    46 			<keysize>512</keysize>

    47 			<keylabel>banana</keylabel>

    48 			<keyalgorithm>RSA</keyalgorithm>

    49 			<keyaccesstype>Extractable</keyaccesstype>

    50 			<authexpression>strong</authexpression>

    51 			<freshness>20</freshness>

    52 		</actionbody>

    53 		<actionresult>

    54 			<return>KErrNone</return> 

    55 		</actionresult>

    56 	</action>

    57 

    58 	<action>

    59 		<actionname>1.1.0 Import a RSA key</actionname>

    60 		<actiontype>importkey</actiontype>

    61 		<actionbody>

    62 			<ImportData>pkcs8rsa.001</ImportData>

    63 			<keyusage>allusagesbutNR</keyusage>

    64 			<keylabel>gm0</keylabel>

    65 			<keyaccesstype>Extractable</keyaccesstype>

    66 			<authexpression>strong</authexpression>

    67 			<freshness>25</freshness>

    68 

    69 		</actionbody>

    70 		<actionresult>

    71 			<return>KErrNone</return>

    72 		</actionresult>

    73 	</action>

    74 

    75 

    76 	<action>

    77 		<actionname>Import a key</actionname>

    78 		<actiontype>importkey</actiontype>

    79 		<actionbody>

    80 			<ImportData>export_pkcs8rsa_0_3DES_CBC.001</ImportData>

    81 			<keyusage>allusagesbutNR</keyusage>

    82 			<keylabel>gm_export_pkcs8rsa_0_3DES_CBC.001</keylabel>

    83 			<keyalgorithm>RSA</keyalgorithm>

    84 			<keyaccesstype>Extractable</keyaccesstype>

    85 			<encrypted>1</encrypted>

    86 			<passphrase>import clanger</passphrase>

    87 			<disabledialogcheck>1</disabledialogcheck>

    88 			<authexpression>strong</authexpression>

    89 			<freshness>50</freshness>

    90 		</actionbody>

    91 		<actionresult>

    92 			<return>KErrNone</return>

    93 		</actionresult>

    94 	</action>

    95 

    96 	

    97 	</passactions>

    98 

    99 	<failactions>

   100 	<action>

   101 		<actionname>Add key banana</actionname>

   102 		<actiontype>addkey</actiontype>

   103 		<actionbody>

   104 			<keyusage>allusagesbutNR</keyusage>

   105 			<keysize>512</keysize>

   106 			<keylabel>banana</keylabel>

   107 			<keyalgorithm>RSA</keyalgorithm>

   108 			<keyaccesstype>Extractable</keyaccesstype>

   109 			<authexpression>strong</authexpression>

   110 			<freshness>20</freshness>

   111 		</actionbody>

   112 		<actionresult> 

   113 			<return>KErrPermissionDenied</return> 

   114 		</actionresult>

   115 	</action>

   116 

   117 	<action>

   118 		<actionname>1.1.0 Import a RSA key</actionname>

   119 		<actiontype>importkey</actiontype>

   120 		<actionbody>

   121 			<ImportData>pkcs8rsa.001</ImportData>

   122 			<keyusage>allusagesbutNR</keyusage>

   123 			<keylabel>gm0</keylabel>

   124 			<keyaccesstype>Extractable</keyaccesstype>

   125 			<authexpression>strong</authexpression>

   126 			<freshness>25</freshness>

   127 

   128 		</actionbody>

   129 		<actionresult>

   130 			<return>KErrPermissionDenied</return>

   131 		</actionresult>

   132 	</action>

   133 

   134 

   135 	<action>

   136 		<actionname>Import a key</actionname>

   137 		<actiontype>importkey</actiontype>

   138 		<actionbody>

   139 			<ImportData>export_pkcs8rsa_0_3DES_CBC.001</ImportData>

   140 			<keyusage>allusagesbutNR</keyusage>

   141 			<keylabel>gm_export_pkcs8rsa_0_3DES_CBC.001</keylabel>

   142 			<keyalgorithm>RSA</keyalgorithm>

   143 			<keyaccesstype>Extractable</keyaccesstype>

   144 			<encrypted>1</encrypted>

   145 			<passphrase>import clanger</passphrase>

   146 			<disabledialogcheck>1</disabledialogcheck>

   147 			<authexpression>strong</authexpression>

   148 			<freshness>50</freshness>

   149 		</actionbody>

   150 		<actionresult>

   151 			<return>KErrPermissionDenied</return> 

   152 		</actionresult>

   153 	</action>

   154 	

   155 	</failactions>

   156 

   157 	<postactions>

   158 	<action>

   159 		<actionname>5, Close key store</actionname>

   160 		<actiontype>delete</actiontype>

   161 		<actionbody></actionbody>

   162 		<actionresult>

   163 			<return>KErrNone</return>

   164 		</actionresult>

   165 	</action>

   166 	</postactions>

   167 </actionbody>

   168 

   169 [SEC-CAPABILITY_USEAUTH-0002-002]

   170 <actionbody>

   171 	<testexe>t_keystore.exe</testexe>

   172 	<excludedcapabilities>

   173 	<capability>TCB</capability>

   174 	</excludedcapabilities>

   175 	<policy>

   176 	<capability>ReadUserData</capability>

   177 	<capability>WriteUserData</capability>

   178 	</policy>

   179 

   180 	<preactions>

   181 	<action>

   182 		<actionname>1, Open key store in manager mode</actionname>

   183 		<actiontype>init</actiontype>

   184 		<actionbody>

   185 			<mode>manager</mode>

   186 		</actionbody>

   187 		<actionresult>

   188 			<return>KErrNone</return>

   189 		</actionresult>

   190 	</action>

   191 	</preactions>

   192 

   193 	<passactions>

   194 	

   195 	<action>

   196 		<actionname>Set a authentication policy for a key </actionname>

   197 		<actiontype>authenticationpolicy</actiontype>

   198 		<actionbody>

   199 			<authmode>set</authmode>

   200 			<keylabel>gm_export_pkcs8rsa_0_3DES_CBC.001</keylabel>

   201 			<authexpression>medium</authexpression>

   202 			<freshness>0</freshness>

   203 		</actionbody>

   204 		<actionresult>

   205 			<return>KErrNone</return>

   206 		</actionresult>

   207 	</action>

   208 

   209 	</passactions>

   210 

   211 	<failactions>

   212 	<action>

   213 		<actionname>Set a authentication policy for a key </actionname>

   214 		<actiontype>authenticationpolicy</actiontype>

   215 		<actionbody>

   216 			<authmode>set</authmode>

   217 			<keylabel>gm_export_pkcs8rsa_0_3DES_CBC.001</keylabel>

   218 			<authexpression>medium</authexpression>

   219 			<freshness>0</freshness>

   220 		</actionbody>

   221 		<actionresult>

   222 			<return>KErrPermissionDenied</return>

   223 		</actionresult>

   224 	</action>

   225 

   226 	</failactions>

   227 

   228 	<postactions>

   229 	<action>

   230 		<actionname>5, Close key store</actionname>

   231 		<actiontype>delete</actiontype>

   232 		<actionbody></actionbody>

   233 		<actionresult>

   234 			<return>KErrNone</return>

   235 		</actionresult>

   236 	</action>

   237 	</postactions>

   238 </actionbody>

   239 

   240 [SEC-CAPABILITY_USEAUTH-0002-003]

   241 <actionbody>

   242 	<testexe>t_keystore.exe</testexe>

   243 	<excludedcapabilities>

   244 	<capability>TCB</capability>

   245 	</excludedcapabilities>

   246 	<policy>

   247 	<capability>ReadUserData</capability>

   248 	</policy>

   249 

   250 	<preactions>

   251 	<action>

   252 		<actionname>1, Open key store in manager mode</actionname>

   253 		<actiontype>init</actiontype>

   254 		<actionbody>

   255 			<mode>manager</mode>

   256 		</actionbody>

   257 		<actionresult>

   258 			<return>KErrNone</return>

   259 		</actionresult>

   260 	</action>

   261 	</preactions>

   262 

   263 	<passactions>

   264 	

   265 	<action>

   266 		<actionname>Try to get authentication policy for a key</actionname>

   267 		<actiontype>authenticationpolicy</actiontype>

   268 		<actionbody>

   269 			<authmode>get</authmode>

   270 			<keylabel>additionalkey</keylabel>

   271 			<expectedexpression>strong</expectedexpression>

   272 			<expectedfreshness>200</expectedfreshness>

   273 		</actionbody>

   274 		<actionresult>

   275 			<return>KErrNone</return>

   276 		</actionresult>

   277 	</action>

   278 

   279 	</passactions>

   280 

   281 	<failactions>

   282 	<action>

   283 		<actionname>Try to get authentication policy for a key</actionname>

   284 		<actiontype>authenticationpolicy</actiontype>

   285 		<actionbody>

   286 			<authmode>get</authmode>

   287 			<keylabel>additionalkey</keylabel>

   288 			<expectedexpression>strong</expectedexpression>

   289 			<expectedfreshness>200</expectedfreshness>

   290 		</actionbody>

   291 		<actionresult>

   292 			<return>KErrPermissionDenied</return>

   293 		</actionresult>

   294 	</action>

   295 	</failactions>

   296 

   297 	<postactions>

   298 	<action>

   299 		<actionname>5, Close key store</actionname>

   300 		<actiontype>delete</actiontype>

   301 		<actionbody></actionbody>

   302 		<actionresult>

   303 			<return>KErrNone</return>

   304 		</actionresult>

   305 	</action>

   306 	</postactions>

   307 </actionbody>

   308 

   309 [SEC-CAPABILITY_USEAUTH-0003-002]

   310 <actionbody>

   311 	<seconds>5</seconds>

   312 </actionbody>

   313