NOTE: The PKCS #11 library and documentation are part of the
FreeRTOS LTS Roadmap. These libraries are fully functional, but undergoing optimizations or refactoring to improve memory usage, modularity, documentation, demo usability, or test coverage. They are available on
GitHub or part of the
LTS Development Snapshot download
PKCS #11 Library
Introduction
PKCS #11 is a standardised and widely used API for manipulating common cryptographic objects. It is important because the functions it specifies
allow application software to use, create, modify, and delete cryptographic objects, without ever exposing those objects to the application’s memory. For example, FreeRTOS AWS reference integrations use
a small subset of the PKCS #11 API to, among other things,
access the secret (private) key necessary to create a network connection that is authenticated and secured by the
Transport Layer Security (TLS) protocol – without the application ever ‘seeing’ the key.
PKCS #11 is maintained by the OASIS PKCS#11 Technical Committee.
Copyright (C) Amazon Web Services, Inc. or its affiliates. All rights reserved.
