In cryptography, PKCS#11 is one of the Public-Key Cryptography Standards, and also refers to the programming interface to create and manipulate cryptographic tokens.

The PKCS#11 standard was first developed by the RSA Laboratories in cooperation with representatives from industry, science, and governments, is now an open standard lead-managed by the OASIS PKCS#11 Technical Committee.

The PKCS #11 standard defines a platform-independent API to cryptographic tokens, such as cryptographic accelerators called a Hardware Security Modules (HSM), smart cards, and names the API itself “Cryptoki” (from “cryptographic token interface” and pronounced as “crypto-key” – but “PKCS #11” is often used to refer to the API as well as the standard that defines it). The API includes functions such as RC2, RC4, RC5, MD5, SHA-1, DES, triple-DES, IDEA, RSA, DSA, MAC computation, and key generation for a wide variety of cryptographic algorithms.

The API defines most commonly used cryptographic object types (RSA keys, X.509 Certificates, DES/Triple DES keys, etc.) and all the functions needed to use, create/generate, modify and delete those objects.

To facilitate the integration of native PKCS#11 tokens into the Java Card platform, a new cryptographic provider, the Sun PKCS#11 provider, has been introduced into the J2SE 5.0 release. This new provider enables existing applications written to the JCA and JCE APIs to access native PKCS#11 tokens. No modifications to the application are required. The only requirement is the proper configuration of the provider into the Java Runtime.

Related Products

Related Articles

Tom Hope, CardLogix: “digital identity stored in a mobile phone carries the highest risk”

April 26th, 2022|

We carry our IDs and credit cards with us everywhere and assume that since they aren’t completely digital, they don't need much security. But this isn’t completely true. Regular users resort to using Virtual Private Networks for guarding their personal data on public wifi networks. But that doesn’t really work when it

CardLogix introduce the BIOSID PRO: Mobile Biometric Enrollment / Validation / Verification tablet.

November 3rd, 2021|

The BIOSID PRO is a biometric enrollment, validation (AFIS) and verification tablet with the capability to store and verify the enrollee information on a smart card, on the cloud, or through the device regardless of if it is connected to the internet or as a stand-alone application.Irvine, CA. Nov 3rd 2021 -- CardLogix,

Aspects’ new software functionality saves time and money for wireless test engineers

October 29th, 2021|

Aspects is announcing 3G and GSM Tools 5.1, the latest release of their leading suite of wireless testing tools at the 3GSM World Congress in Barcelona. These complement their market leading test tool suite and will work in conjunction with a new, ultra portable hardware platform, the SmartStation3S. The new functionality allows test

BIO-key Announces New MobilePOS Pro Android All-in-one Terminal Enabling Convenient Biometric-Secured Commerce

August 18th, 2021|

WALL, N.J., Aug. 18, 2021 -- BIO-key International, Inc. (NASDAQ: BKYI), an innovative provider of civil, workforce and customer identity and access management (IAM) solutions featuring Identity-Bound Biometrics, today announced the availability of BIO-key MobilePOS Pro, a handheld, biometrically-enabled, rugged and powerful Android Point of Sale terminal, incorporating an FBI-certified capacitive fingerprint scanner

Thales Biometric Payment Card: a Secure Innovation in Your Pocket

July 20th, 2021|

PARIS LA DÉFENSE--Jul 20, 2021-- Payment cards are familiar products, which are part of our daily lives. They have evolved quickly over recent years with the emergence of contactless technology. At the heart of this move, Thales has helped banks to constantly reinvent the card itself and offer the best payment experience. This

Thales Supports Mobile Operators With Advanced Voice Biometric Authentication

July 7th, 2021|

July 07, 2021 -- PARIS LA DÉFENSE -- Thales announces a new voice biometric solution which is part of Thales Trusted Digital Identity Service Platform for onboarding and authentication. It meets the growing demand from mobile operator call centres to fight identity fraud whilst providing a seamless customer experience. Delivered in partnership with ID R&D, one

« Back to Glossary Index