You can edit almost every page by Creating an account. Otherwise, see the FAQ.

List of applications using PKCS 11

From EverybodyWiki Bios & Wiki

This article lists applications and other software implementations using the PKCS #11 standard.

Applications[edit]

  • FreeOTFE – disk encryption system (PKCS #11 can either be used to encrypt critical data block, or as keyfile storage)
  • Mozilla Firefox – a web browser
  • Mozilla Thunderbird – an email client
  • OpenDNSSEC – a DNSSEC signer
  • OpenSSLTLS/SSL library (with engine_pkcs11)
  • GnuTLSTLS/SSL library
  • Network Security Services library developed by Mozilla
  • OpenVPNVPN system
  • StrongSwanVPN system
  • TrueCrypt – disk encryption system (PKCS #11 only used as trivial keyfile storage)
  • TrouSerS – an open-source TCG Software Stack
  • OpenSCsmartcard library
  • OpenSSH – a Secure Shell implementation (since OpenSSH version 5.4)[1]
  • OpenDS – an open source directory server.
  • Oracle Database – uses PKCS#11 for transparent data encryption[2]
  • IBM DB2 Database – uses PKCS#11 for transparent data encryption[3]
  • PowerDNS – open source, authoritative DNS server (since version 3.4.0)
  • GNOME Keyring – a password and cryptographic key manager.
  • Solaris Cryptographic Framework – pluggable cryptographic system in operating system
  • Safelayer – KeyOne and TrustedX product suites.
  • Pkcs11Admin – GUI tool for administration of PKCS#11 enabled devices
  • SoftHSM – implementation of a cryptographic store accessible through a PKCS#11 interface
  • XCA – X Certificate and Key management
  • SecureCRT – SSH client
  • wolfSSL – an SSL/TLS library with PKCS #11 support[4]
  • XShell - SSH Client from NetSarang Computer, Inc (versions > 6.0 support PKCS#11)
  • EJBCA – Certification Authority software (uses PKCS#11 for digital signatures)
  • SignServer – Server side software for digitally signing and time stamping documents, files and code (uses PKCS#11 for digital signatures and key wrapping/unwrapping)
  • PuTTY-CAC - A fork of PuTTY that supports smartcard authentication
  • Bloombase StoreSafe – Data-at-rest encryption software appliance with PKCS#11 support for external key management

PKCS #11 wrappers[edit]

Since PKCS #11 is a complex C API many wrappers exist that let the developer use the API from various languages.

  • For Perl:
  • php-pkcs11 PHP PKCS11 Extension including the support of the Oasis PKCS11 standard
  • NCryptoki - .NET (C# and VB.NET), Silverlight 5 and Visual Basic 6 wrapper for PKCS #11 API
  • Pkcs11Interop - Open source .NET wrapper for unmanaged PKCS#11 libraries
  • python-pkcs11 - The most complete and documented PKCS#11 wrapper for Python
  • PyKCS11 - Another wrapper for Python
  • pkcs11 - Another wrapper for Python
  • Java includes a wrapper for PKCS #11 API since version 1.5
  • IAIK PKCS#11 Wrapperon GitHub - A library for the Java™ platform which makes PKCS#11 modules accessible from within Java.
  • pkcs11-helper - A simple open source C interface to handle PKCS #11 tokens.
  • SDeanComponents - Delphi wrapper for PKCS #11 API
  • jacknji11 - Java wrapper using Java Native Access (JNA)
  • rust-cryptoki - High-level, Rust idiomatic wrapper crate for PKCS #11.
  • rust-pkcs11 - Crate for Rust
  • ruby-pkcs11 - Ruby binding for PKCS #11 API
  • tclPKCS11 = Tcl binding for PKCS#11 API
  • pkcs11.net - .NET wrapper for PKCS #11 API
  • Oracle Solaris Cryptographic Framework
  • pkcs11 - Go wrapper for PKCS #11 API
  • node.js
    • graphene - high level OOP wrapper for pkcs#11
    • pkcs11js - low level wrapper for pkcs#11

References[edit]

  1. "'Announce: OpenSSH 5.4 released' - MARC".
  2. "Database Advanced Security Administrator's Guide".
  3. "Setting up a centralized PKCS #11 keystore". IBM.
  4. "wolfSSL Embedded SSL/TLS Library | wolfSSL Products". wolfSSL. Retrieved 2018-10-05.


This article "List of applications using PKCS 11" is from Wikipedia. The list of its authors can be seen in its historical and/or the page Edithistory:List of applications using PKCS 11. Articles copied from Draft Namespace on Wikipedia could be seen on the Draft Namespace of Wikipedia and not main one.