Discuss this help topic in SecureBlackbox Forum

TElPKCS11CertStorage is a descendant of TElCustomCertStorage.

Description

    TElPKCS11CertStorage provides access to certificate storages via PKCS#11 API. This API is usually used to access cryptocards and cryptotokens. Each vendor of the card reader device or crypto token usually ships a PKCS#11 DLL to let applications, which support PKCS#11 (eg. Mozilla, Firefox, PGP etc.) to access the device.

    To use the storage, you need to perform the following sequence of operations:

• Specify the name of the DLL module which provides PKCS#11 API
• Call Open method to open the storage
• Call OpenSession to start a session. This is necessary if you want to read/write certificates and private keys. Without opening a session you can only obtain certain slot and token/card information
• Call TElPKCS11SessionInfo.Login to get access to protected information (see PKCS#11 standard for details).
• After the application has finished using the token/card, call Close method.

    If you want to use Java Native Interface (JNI), check the corresponding article.

Properties

• Certificates
• Count
• CryptoProvider
• DLLName
• ImportOrder
• KeyCount
• KeyIDs
• Keys
• Module
• MonitorSlotEvents
• NSSCertPrefix
• NSSConfigDir
• NSSFlags
• NSSKeyPrefix
• NSSModeEnabled
• NSSParams
• NSSRawParamsStr
• NSSSecMod
• ObjectCount
• Objects
• Opened
• PKCS11Options
• Session
• SessionCount
• Slot
• SlotCount
• SlotEventMonitoringDelay
• SlotEventMonitoringMode
• SynchronizeGUI
• TokenAccessMode
• TrySingleThreadedMode
• UniqueID

Inherited from TElCustomCertStorage

• CRL
• ChainCount
• Chains

Methods

• Constructor
• Destructor
• Add
• AddKey
• AddObject
• ClearObjects
• Close
• CloseAllSessions
• CloseSession
• CopyObject
• GetCertificates
• GetObjects
• Open
• OpenSession
• RefreshCertificateContexts
• RefreshObjectList
• RefreshSlotCertHandles
• Remove
• RemoveKey
• RemoveObject
• UpdateCertificateContexts

Inherited from TElCustomCertStorage

• Clear
• ExportTo
• FindByHash
• FindFirst
• FindNext
• GetIssuerCertificate
• IndexOf
• IsPresent
• LoadFromBufferPFX
• LoadFromStreamPFX
• Remove
• SaveToBufferPFX
• SaveToStreamPFX
• Validate

Events

• OnNotification
• OnSlotEvent

Declared in

.NET:

• Namespace: SBPKCS11CertStorage
• Assembly: SecureBlackbox.PKI

VCL:

• Unit: SBPKCS11CertStorage

Java:

• Package: SecureBlackbox.PKI.jar

C++:

• sbpkcs11certstorage.h

Licensing

To use this class in the development and distribution of your software projects, you need to purchase one of the following licenses:

SecureBlackbox Professional, SecureBlackbox Standard

Discuss this help topic in SecureBlackbox Forum