Skip site navigation (1)Skip section navigation (2)

FreeBSD Manual Pages

  
 
  

home | help
OPENCRYPTOKI(7)			 openCryptoki		       OPENCRYPTOKI(7)

NAME
       openCryptoki - A	PKCS#11	implementation.

DESCRIPTION
       openCryptoki  is	an implementation of the PKCS#11 API standard. It pro-
       vides an	interface to the functions of underlying cryptographic tokens,
       which may be implemented	via software or	hardware. The PKCS#11 specifi-
       cation has been released	by RSA Labs. More information on  PKCS#11  can
       be found	on the RSA labs	website: http://www.rsa.com/rsalabs.

       To use openCryptoki, run	the pkcsslotd daemon. The daemon will read the
       opencryptoki.conf file to collect  information  about  the  tokens  and
       their slots.

       Use  the	 pkcsconf  utility  to further configure openCryptoki once the
       daemon is running.

SECURITY NOTE
       All non-root users that require access to PKCS#11  tokens  using	 open-
       Cryptoki	must be	assigned to the	pkcs11 group to	be able	to communicate
       with the	pkcsslotd daemon. Only fully trusted users should  be  granted
       membership  in  the  group.  Group members can block other openCryptoki
       users from accessing PKCS#11 tokens, and	execute	 arbitrary  code  with
       the privileges of other openCryptoki users.

SEE ALSO
       pkcsslotd(8),
       pkcsconf(1),
       opencryptoki.conf(5).

3.6				   May 2007		       OPENCRYPTOKI(7)

NAME | DESCRIPTION | SECURITY NOTE | SEE ALSO

Want to link to this manual page? Use this URL:
<https://www.freebsd.org/cgi/man.cgi?query=opencryptoki&sektion=7&manpath=FreeBSD+12.1-RELEASE+and+Ports>

home | help