CIMC Security level 2 increases the level of certificate management security for environments in which the risks and consequences of data disclosure are not considered a significant issue. It also increases security by rejecting certificate requests by unauthorized users. All users must authenticate with the PKI before certificate issuance.
Security level 2 uses the same two management roles as Security level 1. The difference is that level 2 requires increased auditing and cryptographic protection of audit logs and system backups. In addition, FIPS 140-1 level 2 cryptographic modules are required for the protection of a CA's key pair.
Was this article helpful?