Cryptographic Token Interface Standard

PKCS#11


PKCS #5 and PKCS #5-style password-based encryption (PBE)


Sections

Password-based encryption/authentication mechanism parameters
PKCS #5 PBKDF2 key generation mechanism parameters
PKCS #5 PBKD2 key generation

Detailed Description

The mechanisms in this section are for generating keys and IVs for performing password-based encryption. The method used to generate keys and IVs is specified in PKCS #5.

 
Functions
           
Mechanism
Encrypt
&
Decrypt
Sign
&
Verify
SR
&
VR1
Digest
Gen.
Key/
Key
Pair
Wrap
&
Unwrap
Derive
CKM_PBE_SHA1_DES3_EDE_CBC        
X
   
CKM_PBE_SHA1_DES2_EDE_CBC        
X
   
CKM_PBA_SHA1_WITH_SHA1_HMAC        
X
   
CKM_PKCS5_PBKD2        
X
   

Mechanisms:

CKM_PBE_SHA1_DES3_EDE_CBC 
CKM_PBE_SHA1_DES2_EDE_CBC 
CKM_PKCS5_PBKD2 
CKM_PBA_SHA1_WITH_SHA1_HMAC 


RSA Security Inc. Public-Key Cryptography Standards - PKCS#11 - v230mechanism1