[Opendnssec-develop] Creating tokens for SoftHSM

Rick van Rein rick at openfortress.nl
Wed Feb 11 14:46:13 UTC 2009


> I don't really understand what is wrong with the current softHSM. It  
> works with the tools like Roy's hsm-toolkit, opensc's pkcs11-tool etc.  
> What is non-standard about these that you are worried about?

It supports standards-conflicting behaviour, making it less suitable as
an early development platform.

> As I understand it the difference is only that you don't have to go  
> through the step of initializing the HSM before you use it by setting  
> the SO pin and user PIN.

No, the issue is the support of multiple users on one token.

> That said, I am all for softHSM working properly.

Cool :)


More information about the Opendnssec-develop mailing list