Presentation is loading. Please wait.

Presentation is loading. Please wait.

RSA Laboratories’ PKCS Series - a Tutorial

Published bySheryl Short Modified over 6 years ago

Similar presentations

Presentation on theme: "RSA Laboratories’ PKCS Series - a Tutorial"— Presentation transcript:

1 RSA Laboratories’ PKCS Series - a Tutorial
Magnus Nyström October, 1999

2 Cryptographic Token Interface Standard
Different from other PKCS documents in that it defines an application programming interface (API) Shields applications from details of cryptographic tokens such as smart cards Concentrates on cryptographic matters The API is written for ANSI C Also known as “Cryptoki”

3 Cryptographic Token Interface Standard, II
Widely used in many token-aware products, e.g. Netscape Communicator Simplified user model: Just one user and a security officer (SO)

4 General model

5 PKCS #11’s object model Objects may be created, read, updated and deleted All access is governed by security states

6 PKCS #11 states (or sessions)

7 PKCS #11 Read-write sessions

8 Functional overview General purpose functions
Initialize, cleanup, information about the library itself Slot and token management GetSlotInfo, GetTokenInfo,… Session management OpenSession, CloseSession… Object management Create, Destroy, Copy

9 Functional overview, II
Encryption functions Decryption functions Digest functions Signing functions MAC functions Key management (e.g. generate a key pair) Callbacks (e.g. error handling)

10 Future enhancements Support for new types of certificates (e.g. attribute certificates) Support for multiple PINs More fine-grained access control Support for “signature-only” keys Time plan: v2.1 in Q4’99 v3.0 perhaps Q3’00

11 More information As usual:

Download ppt "RSA Laboratories’ PKCS Series - a Tutorial"

Similar presentations

Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
PKCS-11 Protocol for Enterprise Key Management

PKCS-11 Protocol for Enterprise Key Management
A Profile Of PKCS #11 V2.11 For Mobile Devices Magnus Nyström PKCS Workshop 2002.

A Profile Of PKCS #11 V2.11 For Mobile Devices Magnus Nyström PKCS Workshop 2002.
PKCS #15 v1.1 Magnus Nyström RSA Laboratories PKCS Workshop, 1999.

PKCS #15 v1.1 Magnus Nyström RSA Laboratories PKCS Workshop, 1999.
Network Security: Lab#2 J. H. Wang Apr. 28, 2011.

Network Security: Lab#2 J. H. Wang Apr. 28, 2011.
14 Sept 00 PKCS#11 Interoperability/Conformance Testing John Hughes PKIForum meeting Montreal - 14 September 00.

14 Sept 00 PKCS#11 Interoperability/Conformance Testing John Hughes PKIForum meeting Montreal - 14 September 00.
Can PKI be made simple enough to be used by non-experts? Signature formats and context Antonio Lioy ( polito.it ) Politecnico di Torino Dip. Automatica.

Can PKI be made simple enough to be used by non-experts? Signature formats and context Antonio Lioy ( polito.it ) Politecnico di Torino Dip. Automatica.
An Introduction to Security Concepts and Public Key Infrastructure (PKI) Mary Thompson.

An Introduction to Security Concepts and Public Key Infrastructure (PKI) Mary Thompson.
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.
Securing Data Storage Protecting Data at Rest Advanced Systems Group Dell Computer Asia Ltd.

Securing Data Storage Protecting Data at Rest Advanced Systems Group Dell Computer Asia Ltd.
CAMP - June 4-6, 2003 1 Copyright Statement Copyright Robert J. Brentrup and Mark J. Franklin 2003. This work is the intellectual property of the authors.

CAMP - June 4-6, Copyright Statement Copyright Robert J. Brentrup and Mark J. Franklin This work is the intellectual property of the authors.
AQA Computing A2 © Nelson Thornes 2009 Section 6.4 1 Unit 3 Section 6.4: Internet Security Digital Signatures and Certificates.

AQA Computing A2 © Nelson Thornes 2009 Section Unit 3 Section 6.4: Internet Security Digital Signatures and Certificates.
Web Security : Secure Socket Layer Secure Electronic Transaction.

Web Security : Secure Socket Layer Secure Electronic Transaction.
Key Management. Session and Interchange Keys  Key management – distribution of cryptographic keys, mechanisms used to bind an identity to a key, and.

Key Management. Session and Interchange Keys  Key management – distribution of cryptographic keys, mechanisms used to bind an identity to a key, and.
Cartão de Cidadão Security and authentication Bruno Duarte – ei07136 Pedro Barbosa – ei08036 Rúben Veloso – ei11001.

Cartão de Cidadão Security and authentication Bruno Duarte – ei07136 Pedro Barbosa – ei08036 Rúben Veloso – ei11001.
Copyright Statement Copyright Robert J. Brentrup 2005. This work is the intellectual property of the author. Permission is granted for this material to.

Copyright Statement Copyright Robert J. Brentrup This work is the intellectual property of the author. Permission is granted for this material to.
第五章 电子邮件安全. Security is one of the most widely used and regarded network services currently message contents are not secure –may be inspected.

第五章 电子邮件安全. Security is one of the most widely used and regarded network services currently message contents are not secure –may be inspected.
Henric Johnson1 Secure Electronic Transactions An open encryption and security specification. Protect credit card transaction on the Internet. Companies.

Henric Johnson1 Secure Electronic Transactions An open encryption and security specification. Protect credit card transaction on the Internet. Companies.
Network security Presentation AFZAAL AHMAD ABDUL RAZAQ AHMAD SHAKIR MUHAMMD ADNAN WEB SECURITY, THREADS & SSL.

Network security Presentation AFZAAL AHMAD ABDUL RAZAQ AHMAD SHAKIR MUHAMMD ADNAN WEB SECURITY, THREADS & SSL.
Unit 3 Section 6.4: Internet Security

Unit 3 Section 6.4: Internet Security

Similar presentations

Ads by Google