OpenSSL v3.x

Securosys HSM Integration Guide - PKCS #11

The Primus PKCS #11 library provides a convenient way to integrate Securosys Hardware Security Modules (HSMs) with OpenSSL v3.x.

The following diagram shows the architecture.

Architecture: The pkcs11-provider sits between the OpenSSL library and the PKCS#11 interface provided by Securosys

The open-source OpenSSL PKCS#11 provider, latchset pkcs11-provider, is used in this implementation. Pre-built binaries tested with Securosys HSMs are available in the download section (login required).

OpenSSL v1.x

This library was designed to work with OpenSSL v3.x. When running OpenSSL v1.x, we recommend using the Engine API (deprecated) instead.

Continue your visit:

Getting Started with Primus PKCS#11
Create a self-signed root certificate with OpenSSL
Generate a key with OpenSSL

Securosys HSM Integration Guide - PKCS #11​

Continue your visit:​

Securosys HSM Integration Guide - PKCS #11

Continue your visit: