OASIS PKCS 11 TC

 View Only

  • 1.  pkcs11-spec-v3.2-wd09(markup).docx uploaded

    Posted 02-20-2025 03:13
    Submitter's message
    PKCS #11 specification v3.2 working draft 09 implements the following updates compared to working draft 08:

    Updates as per TC Meeting 15 Jan 2025:
    • Section 6.67.3, 6.68.3: make CKA_SEED a “Byte array” and fix footnotes
    • Section 6.67.4. add CKA_SEED as contributed attribute
    • Section 6.67.5: remove requirement for C_VerifySignatureInit
    • Section 4.8.2, 4.15.3.2: replace CKA_VALIDATION_FLAGS by CKA_OBJECT_VALIDATION_FLAGS

    Other updates:
    • Add KEM in section Definitions, fixed references [FIPS 203] and [FIPS 204], updates in sections 6.7, 6.67, 6.68, 6.69 as per Comments by Francois Rousseau
    • Replace CKT_TRUSTED_DELEGATOR by CKT_TRUST_ANCHOR as per Bob’s update in draft-07-review
    • Change CK_KEY_HANDLE to CK_SP800_108_KEY_HANDLE as per TC Meeting 29 Jan 2025
    • Updates as per Review: C_EncapsulateKey versus C_DecapsulateKey | OASIS PKCS 11 TC and TC Meeting 12 Feb 2025
    • Section 5.21.1 Updated wording as per Clarifications in specification of ML-DSA and SLH-DSA | OASIS PKCS 11 TC

    (Revision History in the working draft has embedded links to the discussion items referenced above).
    -- Mr. Dieter Bong
    Document Name: pkcs11-spec-v3.2-wd09(markup).docx
    Description
    PKCS #11 specification v3.2 working draft 09 (with markup)
    Download Latest Revision
    Public Download Link
    Submitter: Mr. Dieter Bong
    Group: OASIS PKCS 11 TC
    Folder: Working Drafts
    Date submitted: 2025-02-20 08:12:52


    ---------------------------------
    Best regards,
    Dieter
    ---------------------------------


  • 2.  RE: pkcs11-spec-v3.2-wd09(markup).docx uploaded

    Posted 02-20-2025 14:20
    Dieter: May I suggest a minor editorial change for consistency's sake?

    "Byte array" is defined on line 2024, but appears as "Byte Array" in very many places. In fact, sometimes both choices of capitalization appear in the same table. ��

    (Similarly, the choice of capitalization "Local String" appears only once - line 961 - where I figure it should be "Local string.")

    Regards,
    Michael


    Michael J. Markowitz, Ph.D.

    Executive Vice President

    Phone: 708-445-1704  Mobile: 708-267-5985

    1101 Lake St., Suite 248, Oak Park, IL  60301

    Web: www.infoseccorp.com

    Email: markowitz@infoseccorp.com

     




    Original Message


  • 3.  RE: pkcs11-spec-v3.2-wd09(markup).docx uploaded

    Posted 02-24-2025 09:52

    Michael,

    good catch. I found approx. 100 occurrences of "Byte array" as defined in line 2024, and 20 occurrences of "Byte Array". I'll change the latter to "Byte array".

    For "Local string" there is the definition in line 2028, and a single use of "Local String" in line 961 ... for declaring that the data type CK_UTF8CHAR maintains backwards compatibility to the Local string as defined back in PKCS#11 version 2.01. Local string is actually not used anywhere else in the specification anymore. I will change "Local String" to "Local string" for the time being. For the next major version of the spec, I suggest to discuss removing Local string at all.



    ------------------------------
    Best regards,
    Dieter
    ------------------------------

    Original Message


Related Content