HYP2003 macOS User Guide
Uploaded by
hps sgHYP2003 macOS User Guide
Uploaded by
hps sg- Getting Started
- Logging In
- Certificate Trust Policies
- Set a Certificate's Trust Policy
- Digital Signing
Common questions
Powered by AIInstallation of HYP2003 token drivers requires the latest macOS drivers from a specified download site, an available USB port, and the HYP2003 USB token itself . These prerequisites ensure the software and hardware compatibility necessary for the middleware applications to function smoothly .
To load the PKCS#11 Module in Mozilla Firefox, navigate to Settings, then Privacy & Security, and click Security Devices. Select Load, enter a Module Name, and manually input the file path /usr/local/lib/libcastle_v2.1.0.0.dylib . It's crucial to manually enter the file path because macOS protects dynamic library files, thereby restricting browsing functionalities .
Key usage settings in secures message communications certificates validate whether a certificate can securely sign or encrypt messages, critical in protocols like S/MIME . These settings ensure that only authorized entities can engage in secure communications, protecting message integrity and confidentiality .
Manually setting Certificate Trust Policies allows Mac users to ensure certificates are appropriately trusted based on their usage, like signing emails or secure network connections . This manual setup heightens security by allowing users to scrutinize and approve or reject certificates, reducing the risk of relying on untrusted or compromised certificate authorities .
A root certificate might not be accepted if it has expired or lacks validation for its intended use . To rectify this, the certificate authority must be manually added to a keychain, and its trust settings adjusted to ensure proper system recognition and functionality .
The HYP2003 system allows digital signing of PDFs in Acrobat Reader DC by selecting Certificates under Tools, drawing a signature box, and saving the document with the applied signature . This functionality uses the PKCS#11 Module ensuring authenticated and secure document approvals .
To uninstall Castle Mac software, use the provided uninstall.sh script within the HYP2003 software package . This script automates the removal process ensuring all components are deleted accurately, preventing potential system conflicts .
macOS uses a set of pre-defined trust policies, such as System Defaults and specific protocols like SSL and S/MIME, which require certain criteria to be met, like matching DNS names or specific key usages . These determinations impact digital certifications by controlling access and ensuring only properly verified certificates are used for secure operations .
Setting a certificate's trust policy in Keychain Access involves opening Keychain Access, dragging the certificate file to the icon, choosing a keychain, and selecting the trust policy from the Trust menu . This process allows users to control which certificates are trusted for various purposes, such as signing emails or connecting to secure networks, thereby enhancing security by ensuring that only verified certificates are trusted for specific tasks .
macOS offers several trust policies for certificates: System Defaults use the default settings, Always Trust allows unrestricted access, and Never Trust blocks access. Secure connections like SSL and S/MIME require matching DNS host names and include key usage fields . The choice of trust policy impacts system security by dictating which certificates can be used for specific actions, thereby controlling access to sensitive tasks .
