Certificate Management APIs

Added support for generating signed DSA certificates with key size of 2048-bits and signed certificates with DSA with SHA-224 or SHA-256 digital signatures.

Added support for generating signed ECDSA certificates.

Added support for generating a certificate that is signed by an ECDSA certificate.

Constructs an RSA, DSA, or ECDSA public key from its component values.

Constructs an RSA, DSA, or ECDSA public key from its component values.

Added support for generating certificate requests with DSA key size of 2048-bits and certificate requests that are signed with DSA with SHA-224 or SHA-256 digital signatures.

Added support for generating an ECDSA renewal certificate request.

Added support for generating self-signed DSA certificates with key size of 2048-bits and DSA with SHA-224 or SHA-256 digital signatures.

Added support for generating self-signed ECDSA certificates.

Added support for signing certificate requests using DSA 2048-bit keys and DSA with SHA-224 or SHA-256 digital signatures.

Added support for generating a certificate that is signed by an ECDSA certificate.

Added support for generating certificate requests with DSA key size of 2048-bits and certificate requests that are signed with DSA with SHA-224 or SHA-256 digital signatures.

Added support for generating ECDSA certificate requests.

Added support for generating certificate renewal requests with DSA key size of 2048-bits and certificate requests that are signed with DSA with SHA-224 or SHA-256 digital signatures.

Added support for generating an ECDSA renewal certificate request.

Added support for signing certificate requests using DSA 2048-bit keys and certificate requests that are signed with DSA SHA-224 or SHA-256 digital signatures.

Added support for creating a signed ECDSA certificate.

Added support for generating a certificate that is signed by an ECDSA certificate.

Added support for generating certificate requests with DSA key size of 2048-bits and certificate requests that are signed with DSA with SHA-224 or SHA-256 digital signatures.

Added support for generating an ECDSA certificate renewal request.

Added support for generating self-signed DSA certificates with key size of 2048-bits and DSA with SHA-224 or SHA-256 digital signatures.

Added support for generating self-signed ECDSA certificates.

Added support for generating a certificate that is signed by an ECDSA certificate.

Added support for generating signed DSA certificates with key size of 2048-bits and DSA certificates with DSA with SHA-224 or SHA-256 digital signatures.

Added support for generating a certificate that is signed by an ECDSA certificate.

Added support for generating signed DSA certificates with key size of 2048-bits and signed certificates with DSA with SHA-224 or SHA-256 digital signatures.

Added support for generating signed ECDSA certificates.

Added support for generating a certificate that is signed by an ECDSA certificate.

Added support for signing a CRL with ECDSA with SHA-1.

Added support for generating a signed CRL using DSA with SHA-224 or SHA-256 digital signatures.

Added support for signing a CRL with ECDSA with SHA-1, SHA-224, SHA-256, SHA-384 or SHA-512.

Added support for decoding HostIDMapping extension.

Added support for encoding HostIDMapping extension.

Encodes the EC domain parameters for an ECC key.

Added support for exporting RSA and ECDSA certificates with their private keys when the private keys are stored as extractable secure private keys in the TKDS.

Factorizes an RSA, DSA, or ECDSA private key into its component values.

Factorizes an RSA, DSA, or ECDSA public key into its component values.

Releases storage that is allocated for private key information.

Releases storage that is allocated for public key information.

Added support for generation of DSA 2048-bit key pairs.

Added support for generating ECC key pairs.

Added support for generating ECC key parameters.

Returns requested certificate information for an X.509 certificate.

Added GSK_CMS_LVL9 function mask.

Added GSK_CMS_LVL8 function mask.

Added GSK_CMS_LVL7 function mask.

Get the named curve type and key size for EC domain parameters.

Added support for encrypting the message content using AES CBC (128-bit and 256-bit).

gsk_make_enveloped_data_content_
extended()

Added support for encrypting the message content using AES CBC (128-bit and 256-bit).

Added support for encrypting the message content using AES CBC (128-bit and 256-bit).

gsk_make_enveloped_data_msg_
extended()

Added support for encrypting the message content using AES CBC (128-bit and 256-bit).

Create a PKCS#7 EnvelopedData message containing an RSA or ECDSA private key. Private key is a secure key stored in a PKCS #11 token.

Added support for signing using digital signatures DSA with SHA-224 and SHA-256.

Added support for signing with ECDSA digital signatures.

gsk_make_signed_data_content_
extended()

Added support for signing using digital signatures DSA with SHA-224 and SHA-256.

Added support for signing with ECDSA digital signatures.

Added support for signing using digital signatures DSA with SHA-224 and SHA-256.

Added support for signing with ECDSA digital signatures.

gsk_make_signed_data_msg_
extended()

Added support for signing using digital signatures DSA with SHA-224 and SHA-256.

Added support for signing with ECDSA digital signatures.

Returns a gsk_buffer containing a TKDS key token label with either an "=" added or removed from the first position.

Enhanced to run HMAC-SHA-256 and HMAC-SHA-384 known answer tests.

Updated SSL run time level.

Updated SSL run time level.

Added support for decrypting the message content using AES CBC (128-bit and 256-bit).

gsk_read_enveloped_data_content_
extended()

Added support for decrypting the message content using AES CBC (128-bit and 256-bit).

Added support for decrypting the message content using AES CBC (128-bit and 256-bit).

gsk_read_enveloped_data_msg_
extended()

Added support for decrypting the message content using AES CBC (128-bit and 256-bit).

Added support for verifying DSA with SHA-224 or SHA-256 digital signatures.

Added support for verifying ECDSA digital signatures.

gsk_read_signed_data_content_
extended()

Added support for verifying DSA with SHA-224 or SHA-256 digital signatures.

Added support for verifying ECDSA digital signatures.

Added support for verifying DSA with SHA-224 or SHA-256 digital signatures.

Added support for verifying ECDSA digital signatures.

gsk_read_signed_data_msg_
extended()

Added support for verifying DSA with SHA-224 or SHA-256 digital signatures.

Added support for verifying ECDSA digital signatures.

Added support for verifying DSA with SHA-224 or SHA-256 digital signatures.

Added support for signing with ECDSA digital signatures.

Added support for verifying DSA with SHA-224 or SHA-256 digital signatures.

Added support for signing with ECDSA digital signatures.

Added support for verifying DSA with SHA-224 or SHA-256 digital signatures.

Added support for signing with ECDSA digital signatures.

Added support for gskdb_source_crl_callback.

Add support for validating certificates and certificate chain according to RFC 5280.

Added support for gskdb_source_crl_callback.

Added support for verifying DSA with SHA-224 or SHA-256 digital signatures.

Added support for verifying with ECDSA digital signatures.

Added support for verifying DSA with SHA-224 or SHA-256 digital signatures.

Added support for verifying with ECDSA digital signatures.

Added support for verifying DSA with SHA-224 or SHA-256 digital signatures.

Added support for verifying with ECDSA digital signatures.