|[Front page] [Index]|
It is crucial that the key backup is properly implemented in the PKCS #11 module. The PKCS #11 vendor should document the key backup procedure and the key backup should be tested before the CA with a HSM key is made operational. It is recommended to test the key restoration in another host instead of the host where the keys are created to make the check as authentic as possible.
[Front page] [Index]