JAVA Toolkit
| home | contact

Home > Products > Core Crypto Toolkits > PKCS#11 Provider

News Menu

Latest News

Security Advisory: Secure Renegotiation with iSaSiLk

23/02/2010

iSaSiLk v4.4 now supports the new RenegotiationInfo extension (RFC 5746) that has been specified by the IETF TLS working group to fix a severe security flaw in the SSL/TLS renegotiation protocol.

more more

New version of IAIK-CMS with S/MIMEv3!

20/10/2009

The new version of our CMS-SMIME toolkit now supports all key encryption schemes of the NSA Suite B S/MIME algorithm suite, allows content enveloping with the Camellia cipher algorithm, adds SHA-2 with DSA support for the SignedData content type, and implements the Authenticated-Enveloped Content Type.

more more

References

Our Clients

Los Alamos National Laboratories

PKCS#11 Provider

This product allows easy integration of smart cards, USB tokens and HSMs into Java™ applications. It provides a simple java.security.KeyStore view of these tokens and makes cryptographic operations of these devices accessible via the JCA/JCE framework. For the application, it is just like working with pure software crypto and file key stores. The library accesses the hardware tokens via the PKCS#11 API, also known as Cryptoki. Hence, it can work with any product which supports PKCS#11.

Download the Product Highlights Brochure!

This package contains a provider implementation of the Java™ Cryptography Extension (JCE, specified by SUN). It is based on the IAIK PKCS#11 Wrapper and the IAIK-JCE. Thus, it supports Windows, Linux and Solaris platform out of the box. Support for other platforms can be added easily, because the code of the underlying PKCS#11 Wrapper is available under an Apache-style license and can be ported with little effort. It is compatible with the Java™ 2 platform; this means, it runs on JDK 1.2 or later. It is not compatible with JDK 1.1.

The IAIK JCE Provider for PKCS#11 provides cryptographic functionality, including hash functions, message authentication codes, symmetric, asymmetric, stream encryption, block encryption, key and certificate management. It makes most of the functionality of the PKCS#11 standard accessible to Java™ applications through the JCE API from SUN. This enables developers to use cryptographic hardware within their Java™ applications. Applications which are already based on a pure software implementation of the JCE API can use cryptographic hardware with little or no change of their existing applications.

All cryptographic tokens with PKCS#11 version 2.x compliant drivers can be used; this includes cryptographic smart cards and USB tokens as well as hardware security modules (HSMs). In particular, we tested with products from Giesecke & Devrient (G&D), A.E.T., Gemplus, Schlumberger (Axalto), Eracom, SUN, nCipher, Rainbow, Utimaco, Oberthur, SeTec, Orga, IBM, SafeNet, Siemens, Dallas, ActivCard, A-Trust, Aladdin, Mozilla, Eutron, TeleSec, SmartTrust (ID2), SC², Athena Smartcard Solutions and Kobil.

For people in hurry there is a quick start guide .

For detailed information on the IAIK JCE Provider for PKCS#11 see:

Sales and Conditions

For current price of the PKCS#11 Provider, please see the price list and license conditions .

The current version of this package is available from our webshop .

Download Trial Version Download Evaluation Version | Purchase Purchase 

 
print    tip a friend
back to previous page back  |  top to the top of the page