tarcieri
commented
2 days ago Seems potentially OK but I'm not sure where to list it
Open simo5 opened 1 week ago
tarcieri
commented
2 days ago Seems potentially OK but I'm not sure where to list it
simo5
commented
2 days ago It is a software token, so could be listed together with libraries that implement cryptography if there is no better place.
tarcieri
commented
2 days ago Even though it may be a soft token, if it's using a PKCS#11 API it may be more useful to people interested in hardware
simo5
commented
2 days ago It is a software token, there is no hardware involved. Think of it as an HSM emulator in software.
tarcieri
commented
2 days ago I get it, but again, even though it is a soft token, it is probably most relevant to hardware crypto users who care about the PKCS#11 API
simo5
commented
2 days ago Lot's of things use the PKCS#11 API, for example NSS (Firefox) uses a softoken that exposes the pkcs#11 API for all the crypto services. In any case I am fine whichever way.
tarcieri
commented
2 days ago I just don't think something with a PKCS#11 API falls under a general purpose cryptography library
richsalz
commented
2 days ago Perhaps we can add a a new section, even if it has only one entry? I think many people will be interested in pkcs11 and we can use that section to help them, and perhaps interest them in other rust crypto libraries.
tarcieri
commented
2 days ago Sure, sounds good
https://github.com/latchset/kryoptic is a software token that implements the PKCS#11 API as the entry point. It can be used by any application that knows how to load pkcs#11 drivers in liu of an hardware HSM.
All the cryptoki implementation is rust based, the underlying cryptography uses openssl bindings for certain operations but it is pluggable and uses native code for some stuff.
It is unclear which section it would belong to, but it would be nice to list it there if you think it is awesome enough.