Cryptographic APIsSafeNet delivers one of the most comprehensive portfolios ofcryptographic APIs in the market place. They enable users to seamlessly integrate cryptography and Hardware Security Modules - HSMs into a large range of host-based pre-integrated third-party solutions, or custom applications developed by the client. Interfaces are available to assist adherence to industry-standard security applications, such as PKCS#11, the Java Cryptographic Architecture (JCA) and Java Cryptographic Extension (JCE), plus the Microsoft Cryptographic API (CAPI). EFT/Payment Processing interfaces facilitate host processing compliance with the payment system security standards of all major card schemes including American Express, JCB, MasterCard and Visa. Additionally, the ability to customise cryptographic security enables organisations to meet their unique security needs. |
|
Seamless out-of-the-box integration
As plug-in cryptographic providers, SafeNet's range of tool kits seamlessly integrate with the leading software applications of the most important global and regional software vendors that implement security solutions. SafeNet constantly monitors, tests and upgrades its integrations to ensure interoperability, integration and compatibility with the ever-growing suite of software applications.
Accelerate development of customised applications
- SafeNet's tool kits incorporate Software Development Kits (SDKs) that provide the software libraries, header files and the reference documentation required to assist compilation and linking of an application to the HSM. In addition, numerous sample programs with source code and build instructions, supplied as dynamic/shared and static libraries with the necessary headers and sample code, assist application development.
- HSM software emulation functionality available in many tool kits enable initial development and testing using a software-only variant. This delays the need to install the HSM into the development environment until the final testing phase, after the application is debugged and fully tested.
SafeNet's cryptographic toolkits at a glance:
PKCS#11 API implementation - ProtectToolkit C
ProtectToolkit C is a cryptographic provider that enables secure applications to be constructed using the industry standard PKCS#11 API. Additional functionality such as certificate request generation, certificate generation, time stamping and advanced key management are supported by SafeNet's extensions. This software development kit includes application-building tools, libraries, sample source code and a graphical PKCS#11 token browser. It is ported to a wide range of operating systems and consists of a range of both 'C' and Java language callable functions.
Java JCA/JCE provider implementation - ProtectToolkit J
ProtectToolkit J is a Java based Cryptographic Provider that allows Java programs to access hardware based, high strength cryptographic services. It enables Java classes to support key storage, authentication and encryption services on the SafeNet's HSMs. It is operating system independent and consists of a range of 'Java' classes.
Cryptographic Service Provider (CSP) for Microsoft CryptoAPI - ProtectToolkit M
ProtectToolkit M is SafeNet's implementation of a Microsoft Cryptographic Service Provider (CSP) for Microsoft’s CryptoAPI. It encompasses the RSA "Full" and "RSA Schannel" CSP provider types to deliver tamper protected hardware key storage and fast RSA processing via SafeNet's HSMs.
RSA Command Set - ProtectToolkit RSA
ProtectToolkit RSA is a high-level application programming interface which enables the RSA public key cryptographic functions of SafeNet PCI adapter HSMs to be accessible to application software. It is operating system independent and consists of a range of 'C' language callable functions.
ESA Command Set - ProtectToolKit ESA
ProtectToolKit ESA consists of an encryption driver plus a range of 'C' language callable functions and is adapter and operating system independent. The APIs support Microsoft 'C' and Borland Turbo 'C' source languages.
Functionality Module Software Development Kit - ProtectProcessing
The software development kit functionality within ProtectProcessing allows an unsurpassed level of flexibility and extensibility. It provides the ability to produce your own custom cryptographic application (including completely new algorithms) and allow it to be securely downloaded and executed within the secure confines of a Hardware Security Module - HSM. In addition, custom extensions to SafeNet off-the-shelf PKCS#11 functionality can be easily developed.
ProtectProcessings software emulation functionality streamlines cost and resources enabling developers (either a SafeNet's partner or an end user) to develop and debug custom specific functionality modules (FMs) on a standard PC environment outside of the HSM.
All cryptographic functions are temporarily performed within software libraries in the development server avoiding the need to have a HSM connected to each developer’s machine. Upon completion of development and testing, the implemented custom code can then be easily and securely downloaded to be run within the secure environment of a HSM.
A corresponding Distribution Kit provides all the necessary tools for code signing and certificate management associated with the import of trusted custom code extensions into the HSM.
No prior embedded system experience is required, only knowledge of the industry standard ANSI based C language and its ‘C’ run-time library.
