Files in the top-level directory from the latest check-in of branch trunk
- bin
- docs
- include
- misc
- srcp11
- srcpro
- srcsbox
- srcsrv
- srctest
- srctestlib
- AUTHORS
- CHANGES
- COPYING
- do32
- do64
- Makefile.32
- Makefile.64
- README
LSM-PKCS11
----------
What is it: LSM-PKCS11 is a package intended to support the implementation
of Lite Security Modules, i.e. a kind of Hardware Security
Modules (HSM) NOT CERTIFIED, interfaced by a shared library
conforming the PKCS11 API as specified by the document of the
RSA labs. The core is a daemon multithread process, based on
OpenSSL crypto library for cryptographic functions.
Version: 2.01 Cryptoki Standard
1.0 Core Daemon
1.0.1 PKCS#11 Library
Status: beta. A core of the functions have been implemented, and an
extensive functional testing has been performed through NSS
Mozilla library embedded in a PKI and Digital Signature
application. A complete tracing has been implemented on the
server side. The cryptographic functions supported for now
are:
- RSA, DSA asymmetric cryptography
- DES, DES3 symmetric cryptography
- MD2, MD5, SHA1 digest
- randomization
Following features are lacking for now:
- autoconfig for the Linux version
- derive keys function
- elliptic curves cryptography
- more and more cryptographic functions
Runs on: Linux 2.x.y, glibc2, both 32 and 64 bits
Microsoft Windows 2000/XP/NT (projects for VC++ 6.0 included)
Requires: (the crypto library therein) as the cryptographic backend, that
is availiable from every good ftp archive or
http://www.openssl.org/
The WIN32 version includes the OpenSSL version 0.9.8a limited
to the crypto static library (libeay32.lib asa libosl32.lib)
to facilitate the Windows lovers.
Docs: Documentation is realeased as a PDF document, and a version
of the PKCS#11 document in PDF format, got from RSA labs.
Licence: (c) 2005,2006,2007 Clizio Merli. The code is released under
the GNU Public License (GPL) the terms of which are detailed
in the file COPYING, that must accompany this document.
THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR
IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL
THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE
USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY
OF SUCH DAMAGE.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
INSTALLATION
------------
after unpacking the tar.gz (or zip) and READING THE DOCUMENTATION:
Linux 32 bits:
ln -s Makefile.32 Makefile
make clean
make
make install
Linux 64 bits:
ln -s Makefile.64 Makefile
make clean
make
make install
Windows:
run VC++ on LSM.dsw
recompile all in batch mode
follow the doc to make installation
then play as you like. A test program is include (testpkcs11) that
can be run on the daemon to test the package.
Clizio Merli
email: clizio@clizio.com
corso Liberta' 69/A
13100, Vercelli - Italy