[Opendnssec-user] Re: PKCS#11 official version
pspacek at redhat.com
Thu May 7 14:30:30 UTC 2015
On 7.5.2015 13:31, Elizabeta wrote:
> Thank you for the quick responding.
> I have not yet checked the v2.4, but it seems that there were only draft versions for the PKCS#11 v 2.30 specification, and the latest official version is 2.20?
PKCS#11 specification was handed over to OASIS and version 2.40 was officially
released on 2015-04-14, i.e. ~ 3 weeks ago.
Technical committee claims this:
"This draft builds on the foundation of PKCS #11 V2.30, and is backwards
compatible to PKCS #11 V2.20. "
For review of Cryptography Changes in v2.40 see
I hope this helps. Have a nice day!
Petr Spacek @ Red Hat
> Does this means, that the SoftHSM will handle the v2.40 and not v2.30 as initially planned ?
> Thanks in advance.
> Best regards,
> Le 7 mai 2015 à 13:00, opendnssec-user-request at lists.opendnssec.org a écrit :
>> Date: Thu, 07 May 2015 12:29:52 +0200
>> From: Petr Spacek <pspacek at redhat.com>
>> Subject: Re: [Opendnssec-user] PKCS11 Specification version
>> To: opendnssec-user at lists.opendnssec.org
>> Message-ID: <554B3EA0.6060905 at redhat.com>
>> Content-Type: text/plain; charset=windows-1252
>> On 7.5.2015 09:59, Elizabeta wrote:
>>> Dear all,
>>> I have a small question about PKCS#11 specification and SoftHSM v2.
>>> Is SoftHSM v2 under the v2.20 or v2.30 PKCS#11 specification ?
>>> Thank you in advance.
>> Some things like constants for AES key wrapping mechanisms are already taken
>> from 2.40. I'm not sure about the rest.
>> Petr Spacek @ Red Hat
More information about the Opendnssec-user