Skip to end of metadata
Go to start of metadata

SoftHSM v1 has a number of limitations regarding the number of concurrent sessions and the number of stored objects. It also has some limitations on the algorithm support. Only the RSA algorithm can be used for public key operations. Outside the scope of DNSSEC, there is also support for X.509 certificates.

On this Page

Sessions

  • Maximum 256 concurrent sessions with the library

Objects

  • The number of objects per token is limited by the integer counter of the database.

Key generation

  • RSA 512-4096 bit

Sign and verify

  • CKM_RSA_PKCS
  • CKM_RSA_X_509
  • CKM_MD5_RSA_PKCS
  • CKM_RIPEMD160_RSA_PKCS
  • CKM_SHA1_RSA_PKCS
  • CKM_SHA256_RSA_PKCS
  • CKM_SHA384_RSA_PKCS
  • CKM_SHA512_RSA_PKCS
  • CKM_SHA1_RSA_PKCS_PSS
  • CKM_SHA256_RSA_PKCS_PSS
  • CKM_SHA384_RSA_PKCS_PSS
  • CKM_SHA512_RSA_PKCS_PSS

Encrypt and decrypt

  • CKM_RSA_PKCS

Digest

  • CKM_MD5
  • CKM_RIPEMD160
  • CKM_SHA_1
  • CKM_SHA256
  • CKM_SHA384
  • CKM_SHA512

Certificate

  • X.509
  • No labels