Cryptographic Token Interface Standard

PKCS#11


Government authentication-only

The U.S. government has standardized on the Digital Signature Algorithm as defined in FIPS PUB 186 for signatures and the Secure Hash Algorithm as defined in FIPS PUB 180-1 for message digesting. The relevant mechanisms include the following:

DSA key generation (512-1024 bits)

DSA (512-1024 bits)

SHA-1

Note that this version of Cryptoki does not have a mechanism for generating DSA parameters.


RSA Security Inc. Public-Key Cryptography Standards - PKCS#11 - v201