Your browser does not allow storing cookies. We recommend enabling them.
SSH.COM uses cookies to give you the best experience and most relevant marketing. More info
DECLINE Warning: Some functionality on this site will not work without cookies and our advertising will be less relevant!GOT IT!

PreviousNextUp[Front page] [Index]

Requirements for the PKCS #11 Modules

The use of PKCS #11 with SSH Tectia Certifier requires the following from a PKCS #11 implementation:

  • The device has to support RSA.
  • All RSA key pairs in the device must have the CKA_ID attribute. The corresponding public and private keys must have the same CKA_ID value. The CKA_ID attribute is only a recommendation in PKCS #11, but the attribute is required by SSH Tectia Certifier. The Eracom and nCipher devices have been tested to work as recommended.

PreviousNextUp[Front page] [Index]


 

 
PrivX
 

 

 
What to read next:

  • Reduce Secure Shell risk. Get to know the NIST 7966.



    The NISTIR 7966 guideline from the Computer Security Division of NIST is a direct call to action for organizations regardless of industry and is a mandate for the US Federal government.
    Download now

  • ISACA Practitioner Guide for SSH



    With contributions from practitioners, specialists and SSH.COM experts, the ISACA “SSH: Practitioner Considerations” guide is vital best practice from the compliance and audit community.
    Download now