Summary
A Library instance holds a handle to the opened PKCS#11 - dll or so file. The API of the binding consists of a lower layer, which is near to the PKCS#11 C interface, and a higher layer, which is more Ruby like and more comfortable. A PKCS#11 module is a software library with a defined API which allows access to cryptographic hardware. It usually comes with hardware security modules (HSM), smart cards and crypto tokens (e.g. Thus, the PKCS#11 Wrapper provides Java™ software access to almost any crypto hardware. For example, a Java™ application can use it. @PrateekJoshi libp11 is standalone convenience wrapper library built on top of standard PKCS#11 API so naturally it is using it's own structures in its examples. Source code of PKCS#11 library opensc-pkcs11.dll shipped by OpenSC project is located in different repository – jariq Feb 3 '18 at 15:42.
Include the SunPKCS11 provider in the JDK for 64-bit Windows.
Motivation
More and more vendors are providing native PKCS#11 libraries for 64-bitWindows. Shipping the SunPKCS11 provider in the JDK for 64-bit Windows willallow Java applications to use such libraries on that platform.
Description
Modify the current build process to build the SunPKCS11 provider binary on64-bit Windows. The provider will be placed in the relevant subdirectory butwill not be configured by default. To use the provider, an application wouldhave to supply its own configuration file that specifies the location of thenative PKCS#11 library along with additional directives according to thespecification in the SunPKCS11 Reference Guide.
Testing
Pkcs11 Library Download
Find a suitable 64-bit PKCS#11 library and run existing regression testsagainst it. If the 64-bit library does not support certain functionalitycovered by the existing regression tests then some adjustments will berequired.
Impact
Pkcs 11 Library
- Documentation: Update the SunPKCS11 Reference guide accordingly, i.e., add64-bit Windows to the supported-platform list.