Release Notes
28 Hardware Devices
RSA BSAFE Crypto-C Micro Edition 4.1.4 Release Notes
Compatibility Identifiers
In RSA testing for this release, setup of the following PKCS #11 hardware devices
required certain compatibility identifiers to be set (depending on the setup of your
operating environment, different identifiers might be required):
• Thales nShield Connect+:
–
R_PROV_PKCS11_COMPAT_NO_TRUNCATED_ECDSA_INPUT
• Solaris Crypto Softtoken on Solaris 11:
–
R_PROV_PKCS11_COMPAT_ALWAYS_LOGIN
–
R_PROV_PKCS11_COMPAT_NO_DERIVE_VALUE_LEN
–
R_PROV_PKCS11_COMPAT_KEX_EXTRACTABLE
–
R_PROV_PKCS11_COMPAT_KEX_INSENSITIVE
–
R_PROV_PKCS11_COMPAT_NO_EC_POINT_WRAP
For more information about the compatibility identifiers, see API Reference
Information > Providers > PKCS #11 Provider Objects > PKCS #11 Provider
Object Identifiers > PKCS #11 Provider Object Compatibility Identifiers in the
RSA BSAFE Crypto-C Micro Edition
Developers Guide.
Key Management
RSA key generation
DSA key generation
DH key generation
EC key generation
1
Key wrapping
Key unwrapping
Direct key import/export
Find key by label
Find asymmetric key by
modulus
1
For a list of supported elliptic curves, see Elliptic Curve Support.
Table 7 Cryptographic Operations on Hardware (continued)
Supported Operation
RSA SecurID
800
Solaris Crypto
Softtoken -
Solaris 11
Thales nShield
Connect+