没有合适的资源?快使用搜索试试~ 我知道了~
资源推荐
资源详情
资源评论
PKCS #11 v2.11---Cryptographic Token Interface Standard 密码令牌接口标准
组织: PKI 论坛 (http://www.pki.com.cn)
PKCS/PKIX 中文翻译计划
论坛 E-mail:pki@pki.com.cn
译者: don’t know
版权:本中文翻译文档版权归 PKI 论坛的注册用户所共有。可以用于非商业用途自由转载,但必须保留
本
文档的翻译及版权信息。如用于商业目的,所得利润需用于 PKI 论坛的发展。
更改记录
日期 修改章节 类型 修改描述 修改人
C 创建文档 Don’t konw
2003-7-30 M 校对并升级到 V2.11 PKI
* 修改类型分为 C-CREATE A - ADDED M - MODIFIED D - DELETED
PKCS #11 v2.11 密码令牌接口标准
(PKCS #11 v2.11: Cryptographic Token Interface Standard)
RSA
实验室
修订版
1
2001
年
10
月
PKCS/PKIX 中文翻译计划
PKCS #11 v2.11---Cryptographic Token Interface Standard 密码令牌接口标准
目录
PKCS #11 V2.11 密码令牌接口标准.................................................................................................................................1
(PKCS #11 V2.11: CRYPTOGRAPHIC TOKEN INTERFACE STANDARD)..........................................................1
RSA 实验室.........................................................................................................................................................................1
修订版 12001 年 10 月......................................................................................................................................................1
1. 引言..................................................................................................................................................................................1
2. 适用范围..........................................................................................................................................................................2
3. 参考文献..........................................................................................................................................................................2
4. 定义..................................................................................................................................................................................4
CRYPTOGRAPHIC DEVICE(密码设备).................................................................................................................5
CRYPTOKI LIBRARY (CRYPTOKI 库).................................................................................................................5
5. 符号与缩写......................................................................................................................................................................7
6. 概述..................................................................................................................................................................................9
6.1 设计目的...................................................................................................................................................................9
6.2 通用模型.................................................................................................................................................................10
6.3 令牌的逻辑视图.....................................................................................................................................................11
6.4 用户.........................................................................................................................................................................12
6.5 应用程序和它们的 CRYPTOKI 使用.......................................................................................................................12
6.5.1 应用程序和进程..............................................................................................................................................12
6.5.2 应用程序和线程..............................................................................................................................................12
6.6 会话.........................................................................................................................................................................13
6.6.1 只读会话状态..................................................................................................................................................13
6.6.2 读/写会话状态.................................................................................................................................................14
6.6.3 由会话限制的对象访问..................................................................................................................................15
6.6.4 会话事件..........................................................................................................................................................16
6.6.5 会话句柄和对象句柄......................................................................................................................................16
6.6.6 会话的能力......................................................................................................................................................17
6.6.7 会话使用的范例..............................................................................................................................................17
6.7 二次鉴别(反对).................................................................................................................................................18
6.7.1 使用由二次鉴别保护的密钥..........................................................................................................................19
6.7.2 产生由二次鉴别保护的私钥..........................................................................................................................19
6.7.3 改变二次鉴别 PIN 值......................................................................................................................................19
6.7.4 二次鉴别 PIN 搜集机制..................................................................................................................................19
6.8 函数概述.................................................................................................................................................................20
7. 安全考虑........................................................................................................................................................................23
8. 独立的平台和自动编译器指示 C 或 C++...................................................................................................................23
PKCS/PKIX 中文翻译计划
PKCS #11 v2.11---Cryptographic Token Interface Standard 密码令牌接口标准
8.1 结构填充.................................................................................................................................................................24
8.2 相关指针的宏.........................................................................................................................................................24
CK_PTR....................................................................................................................................................................24
CK_DEFINE_FUNCTION.......................................................................................................................................24
CK_DECLARE_FUNCTION....................................................................................................................................24
CK_DECLARE_FUNCTION_POINTER..................................................................................................................24
CK_CALLBACK_FUNCTION..................................................................................................................................25
NULL_PTR................................................................................................................................................................25
8.3 示范独立的平台和自动编译器编码.....................................................................................................................25
8.3.1 Win32...............................................................................................................................................................25
8.3.2 Win16...............................................................................................................................................................26
8.3.3 类属 UNIX.......................................................................................................................................................26
9. 通用数据类型................................................................................................................................................................27
9.1 通用信息.................................................................................................................................................................27
CK_VERSION; CK_VERSION_PTR........................................................................................................................27
CK_VERSION_PTR 是 CK_VERSION 的一个指针。...............................................................................................28
CK_INFO; CK_INFO_PTR......................................................................................................................................28
CK_INFO_PTR 是 CK_INFO 的一个指针。................................................................................................................28
CK_NOTIFICATION................................................................................................................................................28
9.2 槽和令牌类型.........................................................................................................................................................28
CK_SLOT_ID; CK_SLOT_ID_PTR.........................................................................................................................29
CK_SLOT_ID_PTR 是 CK_SLOT_ID 的一个指针。.................................................................................................29
CK_SLOT_INFO; CK_SLOT_INFO_PTR...............................................................................................................29
CK_SLOT_INFO_PTR 是 CK_SLOT_INFO 的一个指针。......................................................................................29
CK_TOKEN_INFO; CK_TOKEN_INFO_PTR........................................................................................................30
/* APPLICATION CAN OPEN AS MANY SESSIONS AS IT WANTS */...............................................................35
/* ULMAXSESSIONCOUNT REALLY DOES CONTAIN WHAT IT SHOULD */..............................................35
CK_TOKEN_INFO_PTR 是 CK_TOKEN_INFO 的一个指针。...............................................................................35
9.3 会话类型.................................................................................................................................................................35
CK_SESSION_HANDLE; CK_SESSION_HANDLE_PTR.......................................................................................35
CK_SESSION_HANDLE_PTR 是 CK_SESSION_HANDLE 的一个指针。............................................................35
CK_USER_TYPE......................................................................................................................................................35
CK_STATE................................................................................................................................................................36
CK_SESSION_INFO; CK_SESSION_INFO_PTR...................................................................................................36
CK_SESSION_INFO_PTR 是 CK_SESSION_INFO 的一个指针。..........................................................................36
9.4 对象类型.................................................................................................................................................................37
PKCS/PKIX 中文翻译计划
PKCS #11 v2.11---Cryptographic Token Interface Standard 密码令牌接口标准
CK_OBJECT_HANDLE; CK_OBJECT_HANDLE_PTR.........................................................................................37
CK_OBJECT_HANDLE_PTR 是 CK_OBJECT_HANDLE 的一个指针。.............................................................37
CK_OBJECT_CLASS; CK_OBJECT_CLASS_PTR.................................................................................................37
CK_OBJECT_CLASS_PTR 是 CK_OBJECT_CLASS 的一个指针。......................................................................37
CK_HW_FEATURE_TYPE......................................................................................................................................37
CK_KEY_TYPE.........................................................................................................................................................38
CK_CERTIFICATE_TYPE.......................................................................................................................................38
CK_ATTRIBUTE_TYPE...........................................................................................................................................39
CK_ATTRIBUTE; CK_ATTRIBUTE_PTR...............................................................................................................40
CK_ATTRIBUTE_PTR 是 CK_ATTRIBUTE 的一个指针。.....................................................................................41
CK_DATE.................................................................................................................................................................41
9.5 机制的数据类型.....................................................................................................................................................41
CK_MECHANISM_TYPE; CK_MECHANISM_TYPE_PTR....................................................................................41
#DEFINE CKM_CONCATENATE_DATA_AND_BASE 0X00000363.....................................................................43
CK_MECHANISM_TYPE_PTR 是 CK_MECHANISM_TYPE 的一个指针。.......................................................45
CK_MECHANISM; CK_MECHANISM_PTR..........................................................................................................45
CK_MECHANISM_PTR 是 CK_MECHANISM 的一个指针。................................................................................46
CK_MECHANISM_INFO; CK_MECHANISM_INFO_PTR....................................................................................46
CK_MECHANISM_INFO_PTR 是 CK_MECHANISM_INFO 的一个指针。........................................................48
9.6 函数类型.................................................................................................................................................................48
CK_RV......................................................................................................................................................................48
CK_NOTIFY..............................................................................................................................................................50
CK_C_XXX...............................................................................................................................................................50
CK_FUNCTION_LIST; CK_FUNCTION_LIST_PTR; CK_FUNCTION_LIST_PTR_PTR....................................50
CK_FUNCTION_LIST_PTR 是 CK_FUNCTION_LIST 的一个指针。...................................................................52
CK_FUNCTION_LIST_PTR_PTR 是 CK_FUNCTION_LIST_PTR 的一个指针。...............................................52
9.7 相关锁定类型.........................................................................................................................................................52
CK_CREATEMUTEX...............................................................................................................................................52
CK_VOID_PTR_PTR PPMUTEX................................................................................................................................53
CK_DESTROYMUTEX.............................................................................................................................................53
CK_VOID_PTR PMUTEX............................................................................................................................................53
CK_LOCKMUTEX 和 CK_UNLOCKMUTEX.........................................................................................................53
CK_VOID_PTR PMUTEX............................................................................................................................................53
CK_VOID_PTR PMUTEX............................................................................................................................................54
PKCS/PKIX 中文翻译计划
PKCS #11 v2.11---Cryptographic Token Interface Standard 密码令牌接口标准
CK_C_INITIALIZE_ARGS; CK_C_INITIALIZE_ARGS_PTR.................................................................................54
CK_C_INITIALIZE_ARGS_PTR 是 CK_C_INITIALIZE_ARGS 的一个指针。..................................................55
10. 对象..............................................................................................................................................................................55
10.1 创建、修改和复制对象.......................................................................................................................................56
10.1.1 创建对象........................................................................................................................................................56
10.1.2 修改对象........................................................................................................................................................57
10.1.3 复制对象........................................................................................................................................................57
10.2 公共属性...............................................................................................................................................................58
10.3 硬件特征对象.......................................................................................................................................................58
10.3.1 时钟对象........................................................................................................................................................58
10.3.2 单调计数器对象............................................................................................................................................59
10.4 存储对象...............................................................................................................................................................59
10.5 数据对象...............................................................................................................................................................60
10.6 证书对象...............................................................................................................................................................61
10.6.1 X.509 公钥证书对象.....................................................................................................................................61
10.6.2 X.509 属性证书对象.....................................................................................................................................62
10.7 密钥对象...............................................................................................................................................................64
10.8 公钥对象...............................................................................................................................................................65
10.8.1 RSA 公钥对象................................................................................................................................................66
10.8.2 DSA 公钥对象................................................................................................................................................67
10.8.3 ECDSA 公共密钥对象..................................................................................................................................68
10.8.4 Diffie-Hellman 公共密钥对象......................................................................................................................68
10.8.5 KEA 公共密钥对象.......................................................................................................................................69
{CKA_KEY_TYPE, &KEYTYPE, SIZEOF(KEYTYPE)},........................................................................................69
10.9 私钥对象...............................................................................................................................................................70
10.9.1 RSA 私钥对象................................................................................................................................................71
10.9.2 ECDSA 公共密钥对象..................................................................................................................................73
10.9.3 Diffie-Hellman 公共密钥对象......................................................................................................................74
10.9.4 KEA 公共密钥对象.......................................................................................................................................74
CKA_PRIME, CKA_SUBPRIME 和 CKA_BASE “属性值总的来说是 KEA ”参数。 ...........................................74
10.10 私钥对象.............................................................................................................................................................75
10.10.1 RSA 私钥对象..............................................................................................................................................77
10.10.2 DSA 私钥对象.............................................................................................................................................79
10.10.3 ECDSA 私钥对象........................................................................................................................................80
10.10.4 Diffie-Hellman 私钥对象............................................................................................................................80
10.10.5 KEA 私钥对象.............................................................................................................................................81
10.11 保密密钥对象.....................................................................................................................................................82
10.11.1 类属保密密钥对象......................................................................................................................................83
10.11.2 RC2 保密密钥对象......................................................................................................................................84
10.11.3 RC4 保密密钥对象......................................................................................................................................85
PKCS/PKIX 中文翻译计划
剩余63页未读,继续阅读
资源评论
- qiubaolei2019-08-01开发物联网安全终端,学习规范
- longlinzfk2015-07-10很好,真的是中文文档,感谢。
- liuchampion2018-04-04感觉还不错
kjtt_kjtt
- 粉丝: 3
- 资源: 1
上传资源 快速赚钱
- 我的内容管理 展开
- 我的资源 快来上传第一个资源
- 我的收益 登录查看自己的收益
- 我的积分 登录查看自己的积分
- 我的C币 登录后查看C币余额
- 我的收藏
- 我的下载
- 下载帮助
安全验证
文档复制为VIP权益,开通VIP直接复制
信息提交成功