World Library  
Flag as Inappropriate
Email this Article


Article Id: WHEBN0000616418
Reproduction Date:

Title: Pkcs  
Author: World Heritage Encyclopedia
Language: English
Subject: XML Signature, Burt Kaliski, Key server (cryptographic), Cryptography standards, X.690
Publisher: World Heritage Encyclopedia


In IETF and the PKIX working-group.

PKCS Standards Summary
Version Name Comments
PKCS #1 2.2 RSA Cryptography Standard[1] See RFC 3447. Defines the mathematical properties and format of RSA public and private keys (ASN.1-encoded in clear-text), and the basic algorithms and encoding/padding schemes for performing RSA encryption, decryption, and producing and verifying signatures.
PKCS #2 - Withdrawn No longer active as of 2010. Covered RSA encryption of message digests; subsequently merged into PKCS #1.
PKCS #3 1.4 Diffie–Hellman Key Agreement Standard[2] A cryptographic protocol that allows two parties that have no prior knowledge of each other to jointly establish a shared secret key over an insecure communications channel.
PKCS #4 - Withdrawn No longer active as of 2010. Covered RSA key syntax; subsequently merged into PKCS #1.
PKCS #5 2.0 Password-based Encryption Standard[3] See RFC 2898 and PBKDF2.
PKCS #6 1.5 Extended-Certificate Syntax Standard[4] Defines extensions to the old v1 X.509 certificate specification. Obsoleted by v3 of the same.
PKCS #7 1.5 Cryptographic Message Syntax Standard[5] See RFC 2315. Used to sign and/or encrypt messages under a PKI. Used also for certificate dissemination (for instance as a response to a PKCS#10 message). Formed the basis for S/MIME, which is as of 2010 based on RFC 5652, an updated Cryptographic Message Syntax Standard (CMS). Often used for single sign-on.
PKCS #8 1.2 Private-Key Information Syntax Standard[6] See RFC 5958. Used to carry private certificate keypairs (encrypted or unencrypted).
PKCS #9 2.0 Selected Attribute Types[7] See RFC 2985. Defines selected attribute types for use in PKCS #6 extended certificates, PKCS #7 digitally signed messages, PKCS #8 private-key information, and PKCS #10 certificate-signing requests.
PKCS #10 1.7 Certification Request Standard[8] See RFC 2986. Format of messages sent to a certification authority to request certification of a public key. See certificate signing request.
PKCS #11 2.30 Cryptographic Token Interface[9] Also known as "Cryptoki". An API defining a generic interface to cryptographic tokens (see also Hardware Security Module). Often used in single sign-on, public-key cryptography and disk encryption[10] systems. RSA Security has turned over further development of the PKCS#11 standard to the OASIS PKCS 11 Technical Committee.
PKCS #12 1.1 Personal Information Exchange Syntax Standard[11] See RFC 7292. Defines a file format commonly used to store private keys with accompanying public key certificates, protected with a password-based symmetric key. PFX is a predecessor to PKCS #12.

This container format can contain multiple embedded objects, such as multiple certificates. Usually protected/encrypted with a password. Usable as a format for the Java key store and to establish client authentication certificates in Mozilla Firefox. Usable by Apache Tomcat.

PKCS #13 Elliptic Curve Cryptography Standard (Apparently abandoned, only reference is a proposal from 1998.)[12]
PKCS #14 Pseudo-random Number Generation (Apparently abandoned, no documents exist.)
PKCS #15 1.1 Cryptographic Token Information Format Standard[13] Defines a standard allowing users of cryptographic tokens to identify themselves to applications, independent of the application's Cryptoki implementation (PKCS #11) or other API. RSA has relinquished IC-card-related parts of this standard to ISO/IEC 7816-15.[14]

See also


  1. ^ "PKCS #1: RSA Cryptography Standard". RSA Laboratories. 
  2. ^ "PKCS #3: Diffie-Hellman Key Agreement Standard". RSA Laboratories. 
  3. ^ "PKCS #5: Password-Based Cryptography Standard". RSA Laboratories. 
  4. ^ "PKCS #6: Extended-Certificate Syntax Standard". RSA Laboratories. 
  5. ^ "PKCS #7: Cryptographic Message Syntax Standard". RSA Laboratories. 
  6. ^ "PKCS #8: Private-Key Information Syntax Standard". RSA Laboratories. 
  7. ^ "PKCS #9: Selected Attribute Types". RSA Laboratories. 
  8. ^ "PKCS #10: Certification Request Syntax Standard". RSA Laboratories. 
  9. ^ "PKCS #11: Cryptographic Token Interface Standard". RSA Laboratories. 
  10. ^ Security Token/Smartcard Support in FreeOTFE
  11. ^ "PKCS #12: Personal Information Exchange Syntax Standard". RSA Laboratories. 
  12. ^ "PKCS #13: Elliptic Curve Cryptography Standard". RSA Laboratories. 
  13. ^ "PKCS #15: Cryptographic Token Information Format Standard". RSA Laboratories. 
  14. ^ RSA Laboratories: "PKCS #15: Cryptographic Token Information Format Standard".
  • Jean-Sébastien Coron, Marc Joye,  

External links

  • RSA Security's page on PKCS
    • What is PKCS? (chapter 5.3.3 of PKCS)
    • About PKCS (appendix G from RFC 3447)
    • OASIS PKCS 11 TC (technical committee home page)
This article was sourced from Creative Commons Attribution-ShareAlike License; additional terms may apply. World Heritage Encyclopedia content is assembled from numerous content providers, Open Access Publishing, and in compliance with The Fair Access to Science and Technology Research Act (FASTR), Wikimedia Foundation, Inc., Public Library of Science, The Encyclopedia of Life, Open Book Publishers (OBP), PubMed, U.S. National Library of Medicine, National Center for Biotechnology Information, U.S. National Library of Medicine, National Institutes of Health (NIH), U.S. Department of Health & Human Services, and, which sources content from all federal, state, local, tribal, and territorial government publication portals (.gov, .mil, .edu). Funding for and content contributors is made possible from the U.S. Congress, E-Government Act of 2002.
Crowd sourced content that is contributed to World Heritage Encyclopedia is peer reviewed and edited by our editorial staff to ensure quality scholarly research articles.
By using this site, you agree to the Terms of Use and Privacy Policy. World Heritage Encyclopedia™ is a registered trademark of the World Public Library Association, a non-profit organization.

Copyright © World Library Foundation. All rights reserved. eBooks from Project Gutenberg are sponsored by the World Library Foundation,
a 501c(4) Member's Support Non-Profit Organization, and is NOT affiliated with any governmental agency or department.