Cryptographic Token Interface Standard

PKCS#11


Government authentication-only

The U.S. government has standardized on the Digital Signature Algorithm as defined in FIPS PUB 186-2 for signatures and the Secure Hash Algorithm as defined in FIPS PUB 180-1 for message digesting. The relevant mechanisms include the following:

DSA key generation (512-1024 bits)

DSA (512-1024 bits)

SHA-1


RSA Security Inc. Public-Key Cryptography Standards - PKCS#11 - v211