Cryptographic Token Interface Standard
PKCS#11
Cryptographic Token Interface Standard Sections
Here is a list of all sections:
Scope
References
Definitions
Symbols and abbreviations
General overview
Design goals
General model
Logical view of a token
Users
Applications and their use of Cryptoki
Applications and processes
Applications and threads
Sessions
Read-only session states
Read/write session states
Permitted object accesses by sessions
Session events
Session handles and object handles
Capabilities of sessions
Example of use of sessions
Secondary authentication (Deprecated)
Function overview
Security considerations
Platform- and compiler-dependent directives for C or C++
Structure packing
Pointer-related macros
Sample platform- and compiler-dependent code
Win32
Win16
Generic UNIX
General data types
General information
Slot and token types
Session types
Object types
Data types for mechanisms
Function types
Locking-related types
Objects
Creating, modifying, and copying objects
Creating objects
Modifying objects
Copying objects
Common attributes
Hardware Feature Objects
Clock
Monotonic Counter Objects
User Interface Objects
Storage Objects
Data objects
Certificate objects
X.509 public key certificate objects
WTLS public key certificate objects
X.509 attribute certificate objects
Key objects
Public key objects
Private key objects
Secret key objects
Domain parameter objects
Mechanism objects
Functions
Function return values
Universal Cryptoki function return values
Cryptoki function return values for functions that use a session handle
Cryptoki function return values for functions that use a token
Special return value for application-supplied callbacks
Special return values for mutex-handling functions
All other Cryptoki function return values
More on relative priorities of Cryptoki errors
Error code 'gotchas'
Conventions for functions returning output in a variable-length buffer
Disclaimer concerning sample code
General-purpose functions
Slot and token management functions
Session management functions
Object management functions
Encryption functions
Decryption functions
Message digesting functions
Signing and MACing functions
Functions for verifying signatures and MACs
Dual-function cryptographic functions
Key management functions
Random number generation functions
Parallel function management functions
Callback functions
Surrender callbacks
Vendor-defined callbacks
Cryptoki tips and reminders
Operations, sessions, and threads
Multiple Application Access Behavior
Objects, attributes, and templates
Signing with recovery
Manifest constants
Token profiles
Government authentication-only
Cellular Digital Packet Data
Other profiles
Comparison of Cryptoki and other APIs
FORTEZZA CIPG, Rev. 1.52
GCS-API
Intellectual property considerations
Revision History
RSA Security Inc. Public-Key Cryptography Standards - PKCS#11 - v230base