search

bentonstark / py-hsm

Python module for accessing PKCS#11 compliant HSMs
Other
57 stars 18 forks source link

Would an YubiHSM2 work? #6

Closed gaia closed 6 years ago

gaia commented 6 years ago

You probably haven't listed it bc you haven't tested it, but do you see a reason a yubihsm 2 would not work?

bentonstark commented 6 years ago

I have not tested the YubiHSM 2 with py-hsm. As long as the YubiHSM 2 has PKCS#11 compliant library it should work. I was unable to find any technical guides on the Yubico site to look at. The only code I know of for the YubiHSM 2 interfaces with the hardware using a proprietary API. Annoyingly Yubico named their following python module pyhsm when it actually only interfaces with the YubiHSM 2. Its the reason why I had to name my project py-hsm.

https://github.com/Yubico/python-pyhsm/tree/master/pyhsm

Sent from my iPhone

On Jul 10, 2018, at 10:14 PM, gaia notifications@github.com wrote:

You probably haven't listed it bc you haven't tested it, but do you see a reason a yubihsm 2 would not work?

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub, or mute the thread.

gaia commented 6 years ago

Thanks. Maybe this will help? https://developers.yubico.com/YubiHSM2/Product_Overview/

bentonstark commented 6 years ago

So that definitely shows they support the PKCS#11 API version 2.40 which is good. The SDK will probably detail the specific calls supported such as C_Sign.

Sent from my iPhone

On Jul 11, 2018, at 12:56 PM, gaia notifications@github.com wrote:

Thanks. Maybe this will help? https://developers.yubico.com/YubiHSM2/Product_Overview/

— You are receiving this because you commented. Reply to this email directly, view it on GitHub, or mute the thread.