Integration
It describes the use of the HSM through industry-standard APIs. All APIs expose interfaces to the applications on one side and use the proprietary API interfaces on the other to connect to the HSM, so the proprietary library is always needed, even if it is not used directly. In addition, all the library parameter settings affect the operation of the integration APIs.
Warning
The industry-standard APIs allow the use of security and cryptographic features in applications, however this manual does not cover or discuss the theory of security and cryptography or the details, such as the strengths and weaknesses of each specific algorithm or protocol design. Cryptography is a complex and advanced subject, it is always advisable to consult a solid and recent reference to make the best use of HSM. Always try to understand what you are doing and why you are doing it. Don't simply copy code to solve the problems in your scenario. Many applications have already been developed with serious security problems simply because the wrong tool was chosen.
-
MS Crypto API
Cryptographic functions for the Microsoft Windows platform
-
JCA/JCE
Cryptographic operations for the Java platform
-
PKCS#11
APIs for cryptographic operations on a device.
-
OpenSSL engine
Library with encryption functions used by OpenSSL
-
KMIP
KMIP protocol (Key Management Interoperability Protocol) version 1.4