JAVA Toolkit
| home | contact

Home > Products > Core Crypto Toolkits > PKCS#11 Provider

News Menu

Latest News

Christmas Release


One day before Christmas we have released new versions of our SSL/TLS library iSaSiLk and our XML Security Toolkit IAIK-XSECT!

IAIK-JCE 5.60 and IAIK [CP]AdES 2.4 released!


IAIK-JCE 5.60 introduces a "subsidiary" provider as workaround for fixing a JDK JSSE MessageDigest Cloneable bug. IAIK [CP]AdES 2.4 fixes a bug in the AtsHashIndexv3 ASN.1 representation.


Our Clients

PKCS#11 Provider

This product allows easy integration of smart cards, USB tokens and HSMs into Java™ applications. It provides a simple view of these tokens and makes cryptographic operations of these devices accessible via the JCA/JCE framework. For the application, it is just like working with pure software crypto and file key stores. The library accesses the hardware tokens via the PKCS#11 API, also known as Cryptoki. Hence, it can work with any product which supports PKCS#11.

This package contains a provider implementation of the Java™ Cryptography Extension (JCE, specified by SUN). It is based on the IAIK PKCS#11 Wrapper and the IAIK-JCE. Thus, it supports Windows, Linux, MacOS and Solaris platform out of the box. Support for other platforms can be added easily, because the code of the underlying PKCS#11 Wrapper is available under an Apache-style license and can be ported with little effort. It is compatible with the Java™ 2 platform; this means, it runs on JDK 1.3 or later.

The IAIK JCE Provider for PKCS#11 provides cryptographic functionality, including hash functions, message authentication codes, symmetric, asymmetric, stream encryption, block encryption, key and certificate management. It makes most of the functionality of the PKCS#11 standard accessible to Java™ applications through the JCE API from SUN. This enables developers to use cryptographic hardware within their Java™ applications. Applications which are already based on a pure software implementation of the JCE API can use cryptographic hardware with little or no change of their existing applications.

All cryptographic tokens with PKCS#11 version 2.x compliant drivers can be used; this includes cryptographic smart cards and USB tokens as well as hardware security modules (HSMs). In particular, we tested with products from A.E.T., SUN, Utimaco, SafeNet, Mozilla, etc.

For people in hurry there is a quick start guide.

For detailed information on the IAIK JCE Provider for PKCS#11 see:

Sales and Conditions

For the current price of the PKCS#11 Provider, please see the price list and license conditions.

The current version of this package is available from our webshop.

print    tip a friend
back to previous page back  |  top to the top of the page