pkcs#11中文文档_pkcs11文档资源-CSDN文库

pkcs#11文档

5星 · 超过95%的资源需积分: 9 8 浏览量 2014-07-03 23:03:08 上传评论 2 收藏 2.17MB DOC 举报

资源推荐

资源详情

资源评论

PKCS #11 v2.11---Cryptographic Token Interface Standard 密码令牌接口标准

组织：  论坛（）

 中文翻译计划

论坛 ：

译者： 

版权：本中文翻译文档版权归  论坛的注册用户所共有。可以用于非商业用途自由转载，但必须保留

本

文档的翻译及版权信息。如用于商业目的，所得利润需用于  论坛的发展。

更改记录

日期修改章节类型修改描述修改人



创建文档



  !

校对并升级到 "##



$ 修改类型分为 C-%&'A&M!()D*'

PKCS #11 v2.11 密码令牌接口标准

+,##-##./0.'11.21.3

%& 实验室

修订版 ## 年 # 月

PKCS/PKIX 中文翻译计划

PKCS #11 v2.11---Cryptographic Token Interface Standard                                            密码令牌接口标准
一  目录
PKCS #11 V2.11 密码令牌接口标准.................................................................................................................................1
(PKCS #11 V2.11: CRYPTOGRAPHIC TOKEN INTERFACE STANDARD)..........................................................1
RSA 实验室.........................................................................................................................................................................1
修订版 12001 年 10 月......................................................................................................................................................1
1. 引言..................................................................................................................................................................................1
2. 适用范围..........................................................................................................................................................................2
3. 参考文献..........................................................................................................................................................................2
4. 定义..................................................................................................................................................................................4
 CRYPTOGRAPHIC DEVICE（密码设备）.................................................................................................................5
 CRYPTOKI LIBRARY （CRYPTOKI 库）.................................................................................................................5
5. 符号与缩写......................................................................................................................................................................7
6. 概述................................................................................................................................................................................10
6.1 设计目的.................................................................................................................................................................10
6.2 通用模型.................................................................................................................................................................10
6.3 令牌的逻辑视图.....................................................................................................................................................12
6.4 用户.........................................................................................................................................................................12
6.5 应用程序和它们的 CRYPTOKI 使用.......................................................................................................................13
6.5.1 
应用程序和进程
..............................................................................................................................................13
6.5.2 
应用程序和线程
..............................................................................................................................................13
6.6 会话.........................................................................................................................................................................14
6.6.1 
只读会话状态
..................................................................................................................................................14
6.6.2 
读
/
写会话状态
.................................................................................................................................................15
6.6.3 
由会话限制的对象访问
..................................................................................................................................16
6.6.4 
会话事件
..........................................................................................................................................................17
6.6.5 
会话句柄和对象句柄
......................................................................................................................................17
6.6.6 
会话的能力
......................................................................................................................................................17
6.6.7 
会话使用的范例
..............................................................................................................................................18
6.7 二次鉴别（反对）.................................................................................................................................................19
6.7.1 
使用由二次鉴别保护的密钥
..........................................................................................................................20
6.7.2 
产生由二次鉴别保护的私钥
..........................................................................................................................20
6.7.3 
改变二次鉴别
PIN
值
......................................................................................................................................20
6.7.4 
二次鉴别
PIN
搜集机制
..................................................................................................................................20
6.8 函数概述.................................................................................................................................................................21
PKCS/PKIX 中文翻译计划

PKCS #11 v2.11---Cryptographic Token Interface Standard                                            密码令牌接口标准
7. 安全考虑........................................................................................................................................................................24
8. 独立的平台和自动编译器指示 C 或 C++...................................................................................................................25
8.1 结构填充.................................................................................................................................................................25
8.2 相关指针的宏.........................................................................................................................................................25
CK_PTR....................................................................................................................................................................25
CK_DEFINE_FUNCTION.......................................................................................................................................25
CK_DECLARE_FUNCTION....................................................................................................................................25
CK_DECLARE_FUNCTION_POINTER..................................................................................................................26
CK_CALLBACK_FUNCTION..................................................................................................................................26
NULL_PTR................................................................................................................................................................26
8.3 示范独立的平台和自动编译器编码.....................................................................................................................26
8.3.1 Win32...............................................................................................................................................................26
8.3.2 Win16...............................................................................................................................................................27
8.3.3 
类属 
UNIX.......................................................................................................................................................27
9. 通用数据类型................................................................................................................................................................28
9.1 通用信息.................................................................................................................................................................28
CK_VERSION; CK_VERSION_PTR........................................................................................................................28
CK_VERSION_PTR 是 CK_VERSION 的一个指针。...............................................................................................29
CK_INFO; CK_INFO_PTR......................................................................................................................................29
CK_INFO_PTR 是 CK_INFO 的一个指针。................................................................................................................29
CK_NOTIFICATION................................................................................................................................................30
9.2 槽和令牌类型.........................................................................................................................................................30
CK_SLOT_ID; CK_SLOT_ID_PTR.........................................................................................................................30
CK_SLOT_ID_PTR 是 CK_SLOT_ID 的一个指针。.................................................................................................30
CK_SLOT_INFO; CK_SLOT_INFO_PTR...............................................................................................................30
CK_SLOT_INFO_PTR 是 CK_SLOT_INFO 的一个指针。......................................................................................31
CK_TOKEN_INFO; CK_TOKEN_INFO_PTR........................................................................................................31
 /* APPLICATION CAN OPEN AS MANY SESSIONS AS IT WANTS */...............................................................35
 /* ULMAXSESSIONCOUNT REALLY DOES CONTAIN WHAT IT SHOULD */..............................................35
CK_TOKEN_INFO_PTR 是 CK_TOKEN_INFO 的一个指针。...............................................................................36
9.3 会话类型.................................................................................................................................................................36
CK_SESSION_HANDLE; CK_SESSION_HANDLE_PTR.......................................................................................36
CK_SESSION_HANDLE_PTR 是 CK_SESSION_HANDLE 的一个指针。............................................................36
CK_USER_TYPE......................................................................................................................................................36
CK_STATE................................................................................................................................................................36
CK_SESSION_INFO; CK_SESSION_INFO_PTR...................................................................................................37
PKCS/PKIX 中文翻译计划

PKCS #11 v2.11---Cryptographic Token Interface Standard                                            密码令牌接口标准
CK_SESSION_INFO_PTR 是 CK_SESSION_INFO 的一个指针。..........................................................................37
9.4 对象类型.................................................................................................................................................................37
CK_OBJECT_HANDLE; CK_OBJECT_HANDLE_PTR.........................................................................................37
CK_OBJECT_HANDLE_PTR 是 CK_OBJECT_HANDLE 的一个指针。.............................................................38
CK_OBJECT_CLASS; CK_OBJECT_CLASS_PTR.................................................................................................38
CK_OBJECT_CLASS_PTR 是 CK_OBJECT_CLASS 的一个指针。......................................................................38
CK_HW_FEATURE_TYPE......................................................................................................................................38
CK_KEY_TYPE.........................................................................................................................................................38
CK_CERTIFICATE_TYPE.......................................................................................................................................39
CK_ATTRIBUTE_TYPE...........................................................................................................................................39
CK_ATTRIBUTE; CK_ATTRIBUTE_PTR...............................................................................................................41
CK_ATTRIBUTE_PTR 是 CK_ATTRIBUTE 的一个指针。.....................................................................................41
CK_DATE.................................................................................................................................................................41
9.5 机制的数据类型.....................................................................................................................................................42
CK_MECHANISM_TYPE; CK_MECHANISM_TYPE_PTR....................................................................................42
#DEFINE CKM_CONCATENATE_DATA_AND_BASE 0X00000363.....................................................................44
CK_MECHANISM_TYPE_PTR 是 CK_MECHANISM_TYPE 的一个指针。.......................................................46
CK_MECHANISM; CK_MECHANISM_PTR..........................................................................................................46
CK_MECHANISM_PTR 是 CK_MECHANISM 的一个指针。................................................................................47
CK_MECHANISM_INFO; CK_MECHANISM_INFO_PTR....................................................................................47
CK_MECHANISM_INFO_PTR 是 CK_MECHANISM_INFO 的一个指针。........................................................49
9.6 函数类型.................................................................................................................................................................49
CK_RV......................................................................................................................................................................49
CK_NOTIFY..............................................................................................................................................................51
CK_C_XXX...............................................................................................................................................................51
CK_FUNCTION_LIST; CK_FUNCTION_LIST_PTR; CK_FUNCTION_LIST_PTR_PTR....................................52
CK_FUNCTION_LIST_PTR 是 CK_FUNCTION_LIST 的一个指针。...................................................................53
CK_FUNCTION_LIST_PTR_PTR 是 CK_FUNCTION_LIST_PTR 的一个指针。...............................................53
9.7 相关锁定类型.........................................................................................................................................................53
CK_CREATEMUTEX...............................................................................................................................................54
 CK_VOID_PTR_PTR PPMUTEX................................................................................................................................54
CK_DESTROYMUTEX.............................................................................................................................................54
 CK_VOID_PTR PMUTEX............................................................................................................................................54
CK_LOCKMUTEX 
和
CK_UNLOCKMUTEX.........................................................................................................54
PKCS/PKIX 中文翻译计划

PKCS #11 v2.11---Cryptographic Token Interface Standard 密码令牌接口标准

CK_VOID_PTR PMUTEX............................................................................................................................................54

CK_VOID_PTR PMUTEX............................................................................................................................................55

CK_C_INITIALIZE_ARGS; CK_C_INITIALIZE_ARGS_PTR.................................................................................55

CK_C_INITIALIZE_ARGS_PTR 是 CK_C_INITIALIZE_ARGS 的一个指针。..................................................56

10. 对象..............................................................................................................................................................................57

10.1 创建、修改和复制对象.......................................................................................................................................58

10.1.1

创建对象

........................................................................................................................................................58

10.1.2

修改对象

........................................................................................................................................................59

10.1.3

复制对象

........................................................................................................................................................59

10.2 公共属性...............................................................................................................................................................59

10.3 硬件特征对象.......................................................................................................................................................60

10.3.1

时钟对象

........................................................................................................................................................60

10.3.2

单调计数器对象

............................................................................................................................................61

10.4 存储对象...............................................................................................................................................................61

10.5 数据对象...............................................................................................................................................................62

10.6 证书对象...............................................................................................................................................................63

10.6.1 X.509

公钥证书对象

.....................................................................................................................................64

10.6.2 X.509

属性证书对象

.....................................................................................................................................65

10.7 密钥对象...............................................................................................................................................................66

10.8 公钥对象...............................................................................................................................................................67

10.8.1 RSA

公钥对象

................................................................................................................................................68

10.8.2 DSA

公钥对象

................................................................................................................................................69

10.8.3 ECDSA

公共密钥对象

..................................................................................................................................70

10.8.4 Diffie-Hellman

公共密钥对象

......................................................................................................................71

10.8.5 KEA

公共密钥对象

.......................................................................................................................................71

{CKA_KEY_TYPE, &KEYTYPE, SIZEOF(KEYTYPE)},........................................................................................72

10.9 私钥对象...............................................................................................................................................................72

10.9.1 RSA

私钥对象

................................................................................................................................................74

10.9.2 ECDSA

公共密钥对象

..................................................................................................................................76

10.9.3 Diffie-Hellman

公共密钥对象

......................................................................................................................77

10.9.4 KEA

公共密钥对象

.......................................................................................................................................77

CKA_PRIME, CKA_SUBPRIME 和 CKA_BASE 属性值总的来说是“KEA 参数。”..............................................78

10.10 私钥对象.............................................................................................................................................................78

10.10.1 RSA

私钥对象

..............................................................................................................................................80

10.10.2 DSA

私钥对象

.............................................................................................................................................82

10.10.3 ECDSA

私钥对象

........................................................................................................................................83

10.10.4 Diffie-Hellman

私钥对象

............................................................................................................................84

10.10.5 KEA

私钥对象

.............................................................................................................................................85

10.11 保密密钥对象.....................................................................................................................................................86

PKCS/PKIX 中文翻译计划

剩余63页未读，继续阅读

评论收藏

内容反馈