Project news

60-day Public Review for four PKCS #11 Candidate OASIS Standards – ends May 31st

Members of the OASIS PKCS 11 Technical Committee [1] have recently approved a Special Majority Ballot [2] to advance four PKCS #11 specifications as Candidate OASIS Standards (COS). These COS now enter a 60-day public review period in preparation for a member ballot to consider their approval as OASIS Standards. The Candidate OASIS Standards announced today are: PKCS #11 Cryptographic Token Interface Base Specification Version 3.0 PKCS #11 Cryptographic Token Interface Profiles Version 3.0 PKCS #11 Cryptographic Token Interface Current Mechanisms Specification Version 3.0 PKCS #11 Cryptographic Token Interface Historical Mechanisms Specification Version 3.0 These PKCS #11 specifications define a platform-independent API to cryptographic tokens, such as hardware security modules and smart cards. The API itself is named “Cryptoki” (from “cryptographic token interface” and pronounced as “crypto-key”). – “Base Specification” defines data types, functions and other basic components of the PKCS #11 Cryptoki interface. – “Profiles” is intended for developers and architects who wish to design systems and applications that conform to the PKCS #11 Cryptographic Token Interface standard. – “Current Mechanisms” defines mechanisms that are anticipated for use with the current version of PKCS #11. – “Historical Mechanisms” defines mechanisms for PKCS #11 that are no longer in general use. Three Statements of Use were received from Cryptsoft, Information Security Corporation, and Utimaco [3]. Public Review Period: The 60-day public review starts 02 April 2020 at 00:00 UTC and ends 31 May 2020 at 23:59 UTC. This is an open invitation to comment. OASIS solicits feedback from potential users, developers and others, whether OASIS members or not, for the sake of improving the interoperability and quality of its technical work. The prose specifications and related files are available here: ********************* PKCS #11 Cryptographic Token Interface Base Specification Version 3.0 Candidate OASIS Standard 01 27 March 2020 Editable source (Authoritative): https://docs.oasis-open.org/pkcs11/pkcs11-base/v3.0/cos01/pkcs11-base-v3.0-cos01.docx HTML: https://docs.oasis-open.org/pkcs11/pkcs11-base/v3.0/cos01/pkcs11-base-v3.0-cos01.html PDF: https://docs.oasis-open.org/pkcs11/pkcs11-base/v3.0/cos01/pkcs11-base-v3.0-cos01.pdf PKCS #11 header files: https://docs.oasis-open.org/pkcs11/pkcs11-base/v3.0/cos01/include/ ********************* PKCS #11 Cryptographic Token Interface Profiles Version 3.0 Candidate OASIS Standard 01 27 March 2020 Editable source (Authoritative): https://docs.oasis-open.org/pkcs11/pkcs11-profiles/v3.0/cos01/pkcs11-profiles-v3.0-cos01.docx HTML: https://docs.oasis-open.org/pkcs11/pkcs11-profiles/v3.0/cos01/pkcs11-profiles-v3.0-cos01.html PDF: https://docs.oasis-open.org/pkcs11/pkcs11-profiles/v3.0/cos01/pkcs11-profiles-v3.0-cos01.pdf PKCS #11 header files: https://docs.oasis-open.org/pkcs11/pkcs11-profiles/v3.0/cos01/include/ ********************* PKCS #11 Cryptographic Token Interface Current Mechanisms Specification Version 3.0 Candidate OASIS Standard 01 27 March 2020 Editable source (Authoritative): https://docs.oasis-open.org/pkcs11/pkcs11-curr/v3.0/cos01/pkcs11-curr-v3.0-cos01.docx HTML: https://docs.oasis-open.org/pkcs11/pkcs11-curr/v3.0/cos01/pkcs11-curr-v3.0-cos01.html PDF: https://docs.oasis-open.org/pkcs11/pkcs11-curr/v3.0/cos01/pkcs11-curr-v3.0-cos01.pdf PKCS #11 header files: https://docs.oasis-open.org/pkcs11/pkcs11-curr/v3.0/cos01/include/ ********************* PKCS #11 Cryptographic Token Interface Historical Mechanisms Specification Version 3.0 Candidate OASIS Standard 01 27 March 2020 Editable source (Authoritative): https://docs.oasis-open.org/pkcs11/pkcs11-hist/v3.0/cos01/pkcs11-hist-v3.0-cos01.docx HTML: https://docs.oasis-open.org/pkcs11/pkcs11-hist/v3.0/cos01/pkcs11-hist-v3.0-cos01.html PDF: https://docs.oasis-open.org/pkcs11/pkcs11-hist/v3.0/cos01/pkcs11-hist-v3.0-cos01.pdf PKCS #11 header files: https://docs.oasis-open.org/pkcs11/pkcs11-hist/v3.0/cos01/include/ ********************* For your convenience, OASIS provides a complete package of the specification document and any related files in ZIP distribution files. You can download the ZIP files at: “Base Specification”: https://docs.oasis-open.org/pkcs11/pkcs11-base/v3.0/cos01/pkcs11-base-v3.0-cos01.zip “Profiles”: https://docs.oasis-open.org/pkcs11/pkcs11-profiles/v3.0/cos01/pkcs11-profiles-v3.0-cos01.zip “Current Mechanisms”: https://docs.oasis-open.org/pkcs11/pkcs11-curr/v3.0/cos01/pkcs11-curr-v3.0-cos01.zip “Historical Mechanisms”: https://docs.oasis-open.org/pkcs11/pkcs11-hist/v3.0/cos01/pkcs11-hist-v3.0-cos01.zip Additional information about the specifications and the PKCS 11 TC may be found at the TC’s public home page [1]. Comments may be submitted to the TC by any person through the use of the OASIS TC Comment Facility as explained in the instructions located via the button labeled “Send A Comment” at the top of the TC public home page, or directly at: https://www.oasis-open.org/committees/comments/index.php?wg_abbrev=pkcs11 Comments submitted by TC non-members for this work and for other work of this TC are publicly archived and can be viewed at: http://lists.oasis-open.org/archives/pkcs11-comment/ All comments submitted to OASIS are subject to the OASIS Feedback License, which ensures that the feedback you provide carries the same obligations at least as the obligations of the TC members. In connection with this public review of PKCS #11 Cryptographic Token Interface Base Specification Version 3.0, PKCS #11 Cryptographic Token Interface Profiles Version 3.0, PKCS #11 Cryptographic Token Interface Current Mechanisms Specification Version 3.0, and PKCS #11 Cryptographic Token Interface Historical Mechanisms Specification Version 3.0, we call your attention to the OASIS IPR Policy [4] applicable especially [5] to the work of this Technical Committee. All members of the TC should be familiar with this document, which may create obligations regarding the disclosure and availability of a member’s patent, copyright, trademark and license rights that read on an approved OASIS specification. OASIS invites any persons who know of any such claims to disclose these if they may be essential to the implementation of the above specification, so that notice of them may be posted to the notice page for this TC’s work. ============== [1] OASIS PKCS 11 TC https://www.oasis-open.org/committees/pkcs11/ [2] Approval ballot: https://www.oasis-open.org/committees/ballot.php?id=3490 [3] Statements of use – Cryptsoft: https://www.oasis-open.org/committees/download.php/66459 – Information Security Corporation https://www.oasis-open.org/committees/download.php/66711 – Utimaco https://www.oasis-open.org/committees/download.php/66584 [4] https://www.oasis-open.org/policies-guidelines/ipr [5] https://www.oasis-open.org/committees/pkcs11/ipr.php https://www.oasis-open.org/policies-guidelines/ipr#RF-on-RAND-Mode RF on RAND Mode