Skip to main content

OpenSSL v3.x and PKCS#11 API Provider

Securosys HSM Integration Guide

The Primus PKCS #11 library provides a convenient way to integrate Securosys Hardware Security Modules (HSMs) with OpenSSL v3.x.

The following diagram shows the architecture.

Architecture: The pkcs11-provider sits between the OpenSSL library and the PKCS#11 interface provided by Securosys

The open-source OpenSSL PKCS#11 provider, latchset pkcs11-provider, is used in this implementation. Pre-built binaries tested with Securosys HSMs are available in the download section (login required).

OpenSSL v1.x

This library was designed to work with OpenSSL v3.x. When running OpenSSL v1.x, we recommend using the Engine API (deprecated) instead.

Continue your visit: