API | Application programming interface. |
Application | Any computer program that calls the Cryptoki interface. |
ASN.1 | Abstract Syntax Notation One, as defined in X.680. |
Attribute | A characteristic of an object. |
BATON | MISSI's BATON block cipher. |
BER | Basic Encoding Rules, as defined in X.690. |
CAST | Entrust Technologies' proprietary symmetric block cipher. |
CAST3 | Entrust Technologies' proprietary symmetric block cipher. |
CAST5 | Another name for Entrust Technologies' symmetric block cipher CAST128. CAST128 is the preferred name. |
CAST128 | Entrust Technologies' symmetric block cipher. |
CBC | Cipher-Block Chaining mode, as defined in FIPS PUB 81. |
CDMF | Commercial Data Masking Facility, a block encipherment method specified by International Business Machines Corporation and based on DES. |
Certificate | A signed message binding a subject name and a public key, or a subject name and a set of attributes. |
Cryptographic Device | A device storing cryptographic information and possibly performing cryptographic functions. May be implemented as a smart card, smart disk, PCMCIA card, or with some other technology, including software-only. |
Cryptoki | The Cryptographic Token Interface defined in this standard. |
Cryptoki library | A library that implements the functions specified in this standard. |
DER | Distinguished Encoding Rules, as defined in X.690. |
DES | Data Encryption Standard, as defined in FIPS PUB 46-3. |
DSA | Digital Signature Algorithm, as defined in FIPS PUB 186-2. |
ECElliptic Curve ECB | Electronic Codebook mode, as defined in FIPS PUB 81. |
ECDH | Elliptic Curve Diffie-Hellman. |
ECDSA | Elliptic Curve DSA, as in ANSI X9.62. |
ECMQVE | lliptic Curve Menezes-Qu-Vanstone |
FASTHASH | MISSI's FASTHASH message-digesting algorithm. |
IDEA | Ascom Systec's symmetric block cipher. |
JUNIPER | MISSI's JUNIPER block cipher. |
KEA | MISSI's Key Exchange Algorithm. |
LYNKS | A smart card manufactured by SPYRUS. |
MAC | Message Authentication Code. |
MD2 | RSA Data Security, Inc.'s MD2 message-digest algorithm, as defined in RFC 1319. |
MD5 | RSA Data Security, Inc.'s MD5 message-digest algorithm, as defined in RFC 1321. |
Mechanism | A process for implementing a cryptographic operation. |
MQV | Menezes-Qu-Vanstone |
OAEP | Optimal Asymmetric Encryption Padding for RSA. |
Object | An item that is stored on a token. May be data, a certificate, or a key. |
PIN | Personal Identification Number. |
RSA | The RSA public-key cryptosystem. |
RC2 | RSA Data Security's RC2 symmetric block cipher. |
RC4 | RSA Data Security's proprietary RC4 symmetric stream cipher. |
RC5 | RSA Data Security's RC5 symmetric block cipher. |
Reader | The means by which information is exchanged with a device. |
Session | A logical connection between an application and a token. |
SET | The Secure Electronic Transaction protocol. |
SHA-1 | The (revised) Secure Hash Algorithm, as defined in FIPS PUB 180-1. |
Slot | A logical reader that potentially contains a token. |
SKIPJACK | MISSI's SKIPJACK block cipher. |
SSL | The Secure Sockets Layer 3.0 protocol. |
Subject Name | The X.500 distinguished name of the entity to which a key is assigned. |
SO | A Security Officer user. |
Token | The logical view of a cryptographic device defined by Cryptoki. |
User | The person using an application that interfaces to Cryptoki. |
UTF-8 | Universal Character Set (UCS) transformation format (UTF) that represents ISO 10646 and UNICODE strings with a variable number of octets. |