PrivateKeyProtection

        This element indicates the types and strengths of
        facilities
        of a UA used to protect a private key from
        unauthorized access and/or use.

Element information

Namespace: None

Schema document: saml-2.0-os/saml-schema-authn-context-types-2.0.xsd

Type: PrivateKeyProtectionType

Properties: Global, Qualified

Content

Sequence [1..1]
1. KeyActivation [0..1]The actions that must be performed before the private key can be used.
2. KeyStorage [0..1] In which medium is the key stored. memory - the key is stored in memory. smartcard - the key is stored in a smartcard. token - the key is stored in a hardware token. MobileDevice - the key is stored in a mobile device. MobileAuthCard - the key is stored in a mobile authentication card.
3. KeySharing [0..1]Whether or not the private key is shared with the certificate authority.
4. Extension [0..*]

Attributes

None

Used in

Type TechnicalProtectionBaseType (Element TechnicalProtection)

Sample instance

<PrivateKeyProtection>
   <KeyActivation>
      <ActivationPin>
         <Length min="1"/>
         <Alphabet requiredChars="string"/>
         <Generation mechanism="principalchosen"/>
         <ActivationLimit>...
         </ActivationLimit>
         <Extension>
            <!--any element-->
         </Extension>
      </ActivationPin>
      <Extension>
         <!--any element-->
      </Extension>
   </KeyActivation>
   <KeyStorage medium="memory"/>
   <KeySharing sharing="true"/>
   <Extension>
      <!--any element-->
   </Extension>
</PrivateKeyProtection>