PKCS#11

What is PKCS#11 Compliance?

What's the difference between being compliant with the PKCS#11 standard, and being vulnerable?

In this video Graham explains why you need to know about PKCS11 compliance and how it can make a difference to the security of smartcards, HSMs and other secure hardware.

Popular Blog Articles

How to use a Hardware Security Module (HSM) Securely

October 23, 2020

In this short demo, Graham explains how to use a Hardware Security Module (HSM) securely.

How Ledger Hacked an HSM

June 8, 2019

The announcement yesterday of this talk about HSM hacking on the BlackHat 2019 program has caused a stir, and for good reason: the authors claim to have discovered remote unauthenticated attacks giving full control of an HSM and complete access to keys and secrets stored on it...

Cryptosense and Google Project Wycheproof

December 21, 2016

Google recently announced a project to produce tests for cryptographic libraries to detect common weaknesses. Piloted by star cryptographers Daniel Bleichenbacher and Thai Duong, this is an exciting development for us at Cryptosense, and not just because they cite our CRYPTO '12 paper in their RSA tests.

Why PKCS#1v1.5 Signature Should (Also) Be Put Out of Our Misery

August 8, 2016

In 2014 I wrote a piece for this blog on RSA PKCS#1v1.5 encryption and why we need to get rid of it. At the time, the list of algorithms and padding modes to be included in the W3C WebCrypto API was under discussion, and I wanted to argue for the exclusion of this mode from the API. In the end it was indeed left out.

Read our PKCS#11 White Paper

Already registered? Log in here.

Welcome!

As a subscriber to our Knowledge Base, you have free access to all of our white papers, on-demand webinars and more.
Download white paper

Register now

Register for free access to all of our white papers, on-demand webinars and more.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.