HSM in FreeBSD
Matthew Seaman
matthew at FreeBSD.org
Sun May 13 07:39:22 UTC 2012
On 13/05/2012 06:58, mahdieh salamat wrote:
> Hi all. I want to use a HSM pc card for security in my system. Can I use it
> in FreeBSD? FreeBSD support this cards?
I take it you mean a 'Hardware Security Module' and not 'Hierarchical
Storage Management' ?
You'ld have to tell us the make and model number of the card (ideally
with pointers to the manufacturers website showing technical specs if
you can.) Hardware is not generally supported by specific function, but
per manufacturer or per chipset. Also, there's no guarantee that all
the functions of a particular card are supported, but once we've pinned
down what drivers etc. will be used for that hardware, the documentation
should cover that.
Having said that, I believe that OpenSSL provides an API for accessing
many of these sorts of devices, so if OpenSSL supports it, then you're
probably in luck. A keyword here is 'cryptoki' (meaning cryptographic
token interface) -- that's the standard that OpenSSL implements.
Cheers,
Matthew
--
Dr Matthew J Seaman MA, D.Phil.
PGP: http://www.infracaninophile.co.uk/pgpkey
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 267 bytes
Desc: OpenPGP digital signature
Url : http://lists.freebsd.org/pipermail/freebsd-security/attachments/20120513/f3a3a1c2/signature.pgp
More information about the freebsd-security
mailing list