Cryptographic Token Interface Standard

PKCS#11


Functions


Sections

Function return values
Conventions for functions returning output in a variable-length buffer
Disclaimer concerning sample code
General-purpose functions
Slot and token management functions
Session management functions
Object management functions
Encryption functions
Decryption functions
Message digesting functions
Signing and MACing functions
Functions for verifying signatures and MACs
Dual-function cryptographic functions
Key management functions
Random number generation functions
Parallel function management functions
Callback functions

Detailed Description

Cryptoki's functions are organized into the following categories:

Execution of a Cryptoki function call is in general an all-or-nothing affair, i.e., a function call accomplishes either its entire goal, or nothing at all.

A Cryptoki library need not support every function in the Cryptoki API. However, even an unsupported function must have a "stub" in the library which simply returns the value CKR_FUNCTION_NOT_SUPPORTED. The function's entry in the library's CK_FUNCTION_LIST structure (as obtained by C_GetFunctionList) should point to this stub function (see Section 9.6).
RSA Security Inc. Public-Key Cryptography Standards - PKCS#11 - v210