OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

pkcs11 message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Groups - PKCS #11 Message-Based Encryption and Decryption uploaded

Submitter's message
In this revision, I added the following functions for message-based signature and verification:

* C_MessageSignInit
* C_SignMessage
* C_SignMessageBegin
* C_SignMessageNext
* C_MessageSignFinal

* C_MessageVerifyInit
* C_VerifyMessage
* C_VerifyMessageBegin
* C_VerifyMessageNext
* C_MessageVerifyFinal

The multiple-part functions follow the two-function, Begin/Next convention I designed for encryption and decryption. This convention doesn't work as well for signature and verification because one must pass a NULL pSignature argument to C_SignMessageNext and C_VerifyMessageNext except for the last data part. This is not ideal but seems acceptable. An alternative design is to go back to the three-function, Begin/Update/End convention of PKCS #11 v2.* for all multiple-part functions.
-- Wan-Teh Chang
Document Name: PKCS #11 Message-Based Encryption and Decryption
Description
The document specifies new PKCS #11 functions for message-based encryption
and decryption, and a new AES-GCM mechanism for message-based encryption
and two IV generator mechanisms as concrete examples.
Download Latest Revision
Public Download Link
Submitter: Wan-Teh Chang
Group: OASIS PKCS 11 TC
Folder: Documents
Date submitted: 2014-06-24 17:54:38
Revision: 3

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]