Cryptographic Token Interface Standard

PKCS#11


Definitions

For the purposes of this standard, the following definitions apply:
APIApplication programming interface.
ApplicationAny computer program that calls the Cryptoki interface.
ASN.1Abstract Syntax Notation One, as defined in X.680.
AttributeA characteristic of an object.
BERBasic Encoding Rules, as defined in X.690.
CBCCipher-Block Chaining mode, as defined in FIPS PUB 81.
CertificateA signed message binding a subject name and a public key, or a subject name and a set of attributes.
CMSCryptographic Message Syntax (see RFC 2630)
Cryptographic DeviceA device storing cryptographic information and possibly performing cryptographic functions. May be implemented as a smart card, smart disk, PCMCIA card, or with some other technology, including software-only.
CryptokiThe Cryptographic Token Interface defined in this standard.
Cryptoki libraryA library that implements the functions specified in this standard.
DERDistinguished Encoding Rules, as defined in X.690.
DESData Encryption Standard, as defined in FIPS PUB 46-3.
DSADigital Signature Algorithm, as defined in FIPS PUB 186-2.
ECElliptic Curve
ECBElectronic Codebook mode, as defined in FIPS PUB 81.
IVInitialization Vector.
MACMessage Authentication Code.
MechanismA process for implementing a cryptographic operation.
ObjectAn item that is stored on a token. May be data, a certificate, or a key.
PINPersonal Identification Number.
PKCSPublic-Key Cryptography Standards.
PRFPseudo random function.
PTDPersonal Trusted Device, as defined in MeT-PTD
RSAThe RSA public-key cryptosystem.
ReaderThe means by which information is exchanged with a device.
SessionA logical connection between an application and a token.
SlotA logical reader that potentially contains a token.
SSLThe Secure Sockets Layer 3.0 protocol.
Subject NameThe X.500 distinguished name of the entity to which a key is assigned.
SOA Security Officer user.
TLSTransport Layer Security.
TokenThe logical view of a cryptographic device defined by Cryptoki.
UserThe person using an application that interfaces to Cryptoki.
UTF-8Universal Character Set (UCS) transformation format (UTF) that represents ISO 10646 and UNICODE strings with a variable number of octets.
WIMWireless Identification Module.
WTLSWireless Transport Layer Security.

RSA Security Inc. Public-Key Cryptography Standards - PKCS#11 - v230base