Quality RTOS & Embedded Software

LIBRARIES

corePKCS11 Library

Introduction

PKCS #11 is a standardised and widely used API for manipulating common cryptographic objects. It is important because the functions it specifies allow application software to use, create, modify, and delete cryptographic objects, without ever exposing those objects to the application’s memory. For example, FreeRTOS AWS reference integrations use a small subset of the PKCS #11 API to, among other things, access the secret (private) key necessary to create a network connection that is authenticated and secured by the Transport Layer Security (TLS) protocol – without the application ever ‘seeing’ the key.

PKCS #11 is maintained by the OASIS PKCS#11 Technical Committee.

 

Code Size of corePKCS11 (example generated with GCC for ARM Cortex-M)
FileWith -O1 OptimisationWith -Os Optimisation
core_pkcs11.c0.8K0.8K
core_pki_utils.c0.5K0.3K
core_pkcs11_mbedtls.c7.2K6.3K
Total estimate8.5K7.4K
   
Copyright (C) Amazon Web Services, Inc. or its affiliates. All rights reserved.