OpenSSL v3.x and PKCS#11 API Provider
Securosys HSM Integration Guide
The Primus PKCS #11 library provides a convenient way to integrate Securosys Hardware Security Modules (HSMs) with OpenSSL v3.x.
The following diagram shows the architecture.
The open-source OpenSSL PKCS#11 provider, latchset pkcs11-provider, is used in this implementation. Pre-built binaries tested with Securosys HSMs are available in the download section (login required).
OpenSSL v1.x
This library was designed to work with OpenSSL v3.x. When running OpenSSL v1.x, we recommend using the Engine API (deprecated) instead.