6.6.5.2 UAFX Offline Security Policies
6.6.5.2.1 UAFX Offline Security Policy – Rsa-Pkcs-Sha256 Facet

Table 51 describes the details of the UAFX Offline Security Policy – Rsa-Pkcs-Sha256 Facet.

This security Facet defines a public-key cryptography security policy for Descriptors with average security needs.

Table 51 – UAFX Offline Security Policy – Rsa-Pkcs-Sha256 Facet
GroupConformance Unit / Profile TitleOptional
UAFX OfflineEngineeringUAFX Offline Rsa-Sha256 LimitsFalse
SecurityAsymmetricSignatureAlgorithm_RSA-PKCS15-SHA2-256False
SecurityCertificateKeyAlgorithm_RSAFalse
UAFX OfflineEngineeringUAFX Offline CertificateSignatureAlgorithm_RSA‑PKCS15‑SHA2‑256False
6.6.5.2.2 UAFX Offline Security Policy – Rsa-Pss-Sha256 Facet

Table 52 describes the details of the UAFX Offline Security Policy – Rsa-Pss-Sha256 Facet.

This security Facet defines a public-key cryptography security policy for Descriptors with average security needs.

Table 52 – UAFX Offline Security Policy – Rsa-Pss-Sha256 Facet
GroupConformance Unit / Profile TitleOptional
UAFX OfflineEngineeringUAFX Offline Rsa-Sha256 LimitsFalse
SecurityAsymmetricSignatureAlgorithm_RSA-PSS-SHA2-256False
SecurityCertificateKeyAlgorithm_RSAFalse
UAFX OfflineEngineering UAFX Offline CertificateSignatureAlgorithm_ RSASAA_PSS-SHA2-256False 
6.6.5.2.3 UAFX Offline Security Policy – Rsa-Pkcs-Sha384 Facet

Table 53 describes the details of the UAFX Offline Security Policy – Rsa-Pkcs-Sha384 Facet.

This security Facet defines a public-key cryptography security policy for Descriptors with high security needs.

Table 53 – UAFX Offline Security Policy – Rsa-Pkcs-Sha384 Facet
GroupConformance Unit / Profile TitleOptional
UAFX OfflineEngineeringUAFX Offline Rsa-Sha384 LimitsFalse
UAFX OfflineEngineeringUAFX Offline AsymmetricSignatureAlgorithm_RSA‑PKCS15‑SHA2‑384False
SecurityCertificateKeyAlgorithm_RSAFalse
UAFX OfflineEngineeringUAFX Offline CertificateSignatureAlgorithm_RSA‑PKCS15‑SHA2‑384False
6.6.5.2.4 UAFX Offline Security Policy – Rsa-Pss-Sha384 Facet

Table 54 describes the details of the UAFX Offline Security Policy – Rsa-Pss-Sha384 Facet.

This security Facet defines a public-key cryptography security policy for Descriptors with high security needs.

Table 54 – UAFX Offline Security Policy – Rsa-Pss-Sha384 Facet
GroupConformance Unit / Profile TitleOptional
UAFX OfflineEngineeringUAFX Offline Rsa-Sha384 LimitsFalse
UAFX OfflineEngineering UAFX AsymmetricSignatureAlgorithm_RSASAA_PSS-SHA2-384False 
SecurityCertificateKeyAlgorithm_RSAFalse
UAFX OfflineEngineering UAFX Offline CertificateSignatureAlgorithm_RSASAA_PSS-SHA2-384False 
6.6.5.2.5 UAFX Offline Security Policy – Rsa-Pkcs-Sha512 Facet

Table 55 describes the details of the UAFX Offline Security Policy – Rsa-Pkcs-Sha512 Facet.

This security Facet defines a public-key cryptography security policy for Descriptors with very high security needs.

Table 55 – UAFX Offline Security Policy – Rsa-Pkcs-Sha512 Facet
GroupConformance Unit / Profile TitleOptional
UAFX OfflineEngineeringUAFX Offline Rsa-Sha512LimitsFalse
UAFX OfflineEngineeringUAFX Offline AsymmetricSignatureAlgorithm_RSA‑PKCS15‑SHA2‑512False
SecurityCertificateKeyAlgorithm_RSAFalse
UAFX OfflineEngineeringUAFX Offline CertificateSignatureAlgorithm_RSA‑PKCS15‑SHA2‑512False
6.6.5.2.6 UAFX Offline Security Policy – Rsa-Pss-Sha512 Facet

Table 56 describes the details of the UAFX Offline Security Policy – Rsa-Pss-Sha512 Facet.

This security Facet defines a public-key cryptography security policy for Descriptors with very high security needs.

Table 56 – UAFX Offline Security Policy – Rsa-Pss-Sha512 Facet
GroupConformance Unit / Profile TitleOptional
UAFX OfflineEngineeringUAFX Offline Rsa-Sha512LimitsFalse
UAFX OfflineEngineering UAFX Offline AsymmetricSignatureAlgorithm_RSASAA_PSS-SHA2-512False 
SecurityCertificateKeyAlgorithm_RSAFalse
UAFX OfflineEngineering UAFX Offline CertificateSignatureAlgorithm_RSASAA_PSS-SHA2-512False 
6.6.5.2.7 UAFX Offline Security Policy – ECC-nistP256 Facet

Table 57 describes the details of the UAFX Offline Security Policy – ECC-nistP256 Facet.

This security Facet defines an elliptic curve cryptography security policy for Descriptors with average security needs. NIST curves are widely implemented and offer better performance than RSA.

Table 57 – UAFX Offline Security Policy – ECC-nistP256 Facet
GroupConformance Unit / Profile TitleOptional
UAFX OfflineEngineeringUAFX Offline ECC‑nistP256 LimitsFalse
UAFX OfflineEngineeringUAFX Offline AsymmetricSignatureAlgorithm_ECDSA-SHA2-256False
UAFX OfflineEngineeringUAFX Offline CertificateKeyAlgorithm_ECC-nistP256False
UAFX OfflineEngineeringUAFX Offline CertificateSignatureAlgorithm_ECDSA‑SHA2‑256False
6.6.5.2.8 UAFX Offline Security Policy – ECC-nistP384 Facet

Table 58 describes the details of the UAFX Offline Security Policy – ECC-nistP384 Facet.

This security Facet defines an elliptic curve cryptography security policy for Descriptors with high security needs. NIST curves are widely implemented and offer better performance than RSA.

Table 58 – UAFX Offline Security Policy – ECC-nistP384 Facet
GroupConformance Unit / Profile TitleOptional
UAFX OfflineEngineeringUAFX Offline ECC-nistP384 LimitsFalse
UAFX OfflineEngineeringUAFX Offline AsymmetricSignatureAlgorithm_ECDSA-SHA2-384False
UAFX OfflineEngineeringUAFX Offline CertificateKeyAlgorithm_ECC-nistP384False
UAFX OfflineEngineeringUAFX Offline CertificateSignatureAlgorithm_ECDSA-SHA2-384False
6.6.5.2.9 UAFX Offline Security Policy – ECC-nistP521 Facet

Table 59 describes the details of the UAFX Offline Security Policy – ECC-nistP521 Facet.

This security Facet defines an elliptic curve cryptography security policy for Descriptors with very high security needs. NIST curves are widely implemented and offer better performance than RSA.

Table 59 – UAFX Offline Security Policy – ECC-nistP521 Facet
GroupConformance Unit / Profile TitleOptional
UAFX OfflineEngineeringUAFX Offline ECC-nistP521 LimitsFalse
UAFX OfflineEngineeringUAFX Offline AsymmetricSignatureAlgorithm_ECDSA-SHA2-512False
UAFX OfflineEngineeringUAFX Offline CertificateKeyAlgorithm_ECC-nistP521False
UAFX OfflineEngineeringUAFX Offline CertificateSignatureAlgorithm_ECDSA-SHA2-512False