PKCS#11
|
| Cryptographic Token Interface Standard |
PKCS#11 |
The following PRFs are defined in PKCS #5 v2.0. The following table lists the defined functions.
Table 137, PKCS #5 PBKDF2 Key Generation: Pseudo-random functions
| Source Identifier | Value | Parameter Type |
| CKP_PKCS5_PBKD2_HMAC_SHA1 | 0x00000001 | No Parameter. pPrfData must be NULL and ulPrfDataLen must be zero. |
CK_PKCS5_PBKD2_PSEUDO_RANDOM_FUNCTION_TYPE_PTR is a pointer to a CK_PKCS5_PBKD2_PSEUDO_RANDOM_FUNCTION_TYPE.
typedef CK_ULONG CK_PKCS5_PBKDF2_SALT_SOURCE_TYPE;
The following salt value sources are defined in PKCS #5 v2.0. The following table lists the defined sources along with the corresponding data type for the pSaltSourceData field in the CK_PKCS5_PBKD2_PARAM structure defined below.
Table 138, PKCS #5 PBKDF2 Key Generation: Salt sources
| Source Identifier | Value | Data Type |
| CKZ_SALT_SPECIFIED | 0x00000001 | Array of CK_BYTE containing the value of the salt value. |
CK_PKCS5_PBKDF2_SALT_SOURCE_TYPE_PTR is a pointer to a CK_PKCS5_PBKDF2_SALT_SOURCE_TYPE.
typedef struct CK_PKCS5_PBKD2_PARAMS { CK_PKCS5_PBKDF2_SALT_SOURCE_TYPE saltSource; CK_VOID_PTR pSaltSourceData; CK_ULONG ulSaltSourceDataLen; CK_ULONG iterations; CK_PKCS5_PBKD2_PSEUDO_RANDOM_FUNCTION_TYPE prf; CK_VOID_PTR pPrfData; CK_ULONG ulPrfDataLen;CK_UTF8CHAR_PTR pPassword; CK_ULONG_PTR ulPasswordLen; } CK_PKCS5_PBKD2_PARAMS;
| saltSource | source of the salt value |
| pSaltSourceData | data used as the input for the salt source |
| ulSaltSourceDataLen | length of the salt source input |
| iterations | number of iterations to perform when generating each block of random data |
| prf | pseudo-random function to used to generate the key |
| pPrfData | data used as the input for PRF in addition to the salt value |
| ulPrfDataLen | length of the input data for the PRF |
| pPassword | points to the password to be used in the PBE key generation |
| ulPasswordLen | length in bytes of the password information |
CK_PKCS5_PBKD2_PARAMS_PTR is a pointer to a CK_PKCS5_PBKD2_PARAMS.