Cryptographic Token Interface Standard

PKCS#11


ANSI N13-1994

This proposed standard defines an API to the Tessera (now known as Fortezza) PCMCIA Crypto Card. It is at a level similar to Cryptoki. The following table lists the ANSI N13-1994 functions with the equivalent Cryptoki functions.

ANSI N13-1994 Equivalent Cryptoki
CI_ChangePIN C_InitPIN, C_SetPIN
CI_CheckPIN C_Login
CI_Close C_CloseSession
CI_Decrypt C_DecryptInit, C_Decrypt, C_DecryptUpdate, C_DecryptFinal
CI_DeleteCertificate C_DestroyObject
CI_DeleteKey C_DestroyObject
CI_Encrypt C_EncryptInit, C_Encrypt, C_EncryptUpdate, C_EncryptFinal
CI_ExtractX C_WrapKey
CI_GenerateIV C_GenerateRandom
CI_GenerateMEK C_GenerateKey
CI_GenerateRa C_GenerateRandom
CI_GenerateRandom C_GenerateRandom
CI_GenerateTEK C_GenerateKey
CI_GenerateX C_GenerateKeyPair
CI_GetCertificate C_FindObjects
CI_Configuration C_GetTokenInfo
CI_GetHash C_DigestInit, C_Digest, C_DigestUpdate, and C_DigestFinal
CI_GetIV No equivalent
CI_GetPersonalityList C_FindObjects
CI_GetState C_GetSessionInfo
CI_GetStatus C_GetTokenInfo
CI_GetTime No equivalent
CI_Hash C_DigestInit, C_Digest, C_DigestUpdate, and C_DigestFinal
CI_Initialize C_Initialize
CI_InitializeHash C_DigestInit
CI_InstallX C_UnwrapKey
CI_LoadCertificate C_CreateObject
CI_LoadInitValues C_SeedRandom
CI_LoadIV C_EncryptInit, C_DecryptInit
CI_LoadK C_SignInit
CI_LoadPublicKeyParameters C_CreateObject
CI_LoadPIN C_SetPIN
CI_LoadX C_CreateObject
CI_Open C_OpenSession
CI_Relay C_WrapKey
CI_Reset C_CloseAllSessions
CI_Restore No equivalent
CI_Save No equivalent
CI_Select C_OpenSession
CI_SetKey C_EncryptInit, C_DecryptInit
CI_SetMode C_EncryptInit, C_DecryptInit
CI_SetPersonality C_CreateObject
CI_SetTime No equivalent
CI_Sign C_SignInit, C_Sign
CI_Timestamp No equivalent
CI_Terminate C_CloseAllSessions
CI_UnwrapKey C_UnwrapKey
CI_Verify C_VerifyInit, C_Verify
CI_VerifyTimestamp No equivalent
CI_WrapKey C_WrapKey
CI_Zeroize C_InitToken


RSA Security Inc. Public-Key Cryptography Standards - PKCS#11 - v100