Questions tagged [softhsm]

SoftHSM is software that emulates a PKCS11 Hardware Security Module for development and testing.

An HSM or Hardware Security Module is a PKCS11 compliant and tamper-proof hardware component for the management and storage of cryptographic assets such as keys and certificates, and for offloading cryptographic operations.

SoftHSM is a software emulation of a PKCS11 compliant HSM for purposes of development, training and testing. This provides a cost-effective alternative to purchasing dedicated hardware components for non-Production use. It is being developed as a part of the OpenDNSSEC project.

68 questions

votes

2 answers

fabric-ca-server is not able to start with softhsm configuration

I have enabled the PKCS11 in fabric ca , but when starting the fabric-ca-server natively then throwing below error. Please note it works fine with default SW option. Checkout the fabric-ca v1.3.0 Update BCCSP property as below bccsp: …

asked Oct 12 '18 at 09:18

Sudip Verma

votes

1 answer

Pkcs11Exception: Method C_GetSessionInfo returned CKR_CRYPTOKI_NOT_INITIALIZED

We are using Thales nShield HSM for storing Private keys and the corresponding public key is stored in the Certificate store. We have written the logic as below: Search for a valid slot and open a session for that on the first call and it can…

digital-signature pkcs#11 hsm pkcs11interop softhsm

asked Jun 19 '18 at 09:16

Kumar

votes

1 answer

Pkcs#11 with SSL in java

How to use pkcs#11 with softhsm2 in java for ssl handshake . I am facing issues with implementing ssl context factory with keys stored in softhsm2. Please provide sample which i can make use of.

java ssl pkcs#11 softhsm

asked May 18 '17 at 07:34

Slok

votes

0 answers

PKCS11Exception: CKR_TOKEN_NOT_RECOGNIZED

I installed Softhsm v 2.2 and Started working with PkCS#11 Java API that on Operations: 1.Slot Creation Token Creation Key Generation Encryption Signing Key Retrieving I am getting below exception : Exception in thread "main"…

java pkcs#11 hsm softhsm

asked Apr 10 '17 at 07:21

Slok

votes

0 answers

How do I define a pkcs11 attribute for a RSA private key that can store metadata like IV or date of generation used to the key?

According to the latest PKCS#11 spec the typical attribute structure of a RSA private key is the following: CK_ATTRIBUTE template[] = { {CKA_CLASS, &class, sizeof(class)}, {CKA_KEY_TYPE, &keyType, sizeof(keyType)}, {CKA_TOKEN, &true,…

c++ pkcs#11 softhsm

asked Dec 14 '16 at 18:48

Abhishek Das

votes

0 answers

Why iaik wrapper does not find the key pair?

I am using softhsm as pkcs11 provider, and my platform is ubuntu 64 I want to encrypt using softhsm, so I imported a key into slot 0, it told that the key is imported and when I try to import another key with that ID it says the ID is used, so the…

encryption pkcs#11 softhsm

asked Sep 10 '13 at 11:48

Saeed

7,262
14
43
63

-1

votes

1 answer

Why can't I verify signature with PKCS#11?

Consider, I have created PKCS#7 message: ContentInfo contentInfo = new ContentInfo(someByteArrayToSign); SignedCms signedCms = new SignedCms(contentInfo); var certificateFromFile = new X509Certificate2("myCert.pfx"); var signer = new…

c# .net-core pkcs#11 pkcs#7 softhsm

asked Mar 08 '18 at 15:08

pwas

3,225
18
40

-2

votes

1 answer

Using a HSM to store 'master keys' - how?

I'm using softHSM (FWIW with a go library https://github.com/ThalesIgnite/crypto11, documentation here https://pkg.go.dev/github.com/ThalesIgnite/crypto11?tab=doc). My goal is to store a 'master key' (AES256) for encrypting objects similarly to how…

security cryptography pkcs#11 hsm softhsm

asked Aug 25 '20 at 16:32

Dean

6,610
6
40
90

Prev 1 2 3 4