Supported Cryptographic Algorithms

The K7 Cryptographic engine supports cryptographic algorithms that include:

>RSA

>DSA

>Diffie-Hellman

>DES and triple DES

>MD2 and MD5

>SHA-1, SHA-224, SHA-256, SHA-384, SHA-512

>RC2, RC4 and RC5

>AES

>PBE

>ECC

>ECIES

>ARIA, SEED

Application Programming Interface

The major API provided with SafeNet Product Software Development Kit conforms to RSA Laboratories' Public-Key Cryptography Standards #11 (PKCS #11) v2.20. A set of API services (called PKCS #11 Extensions) designed by SafeNet, augments the services provided by PKCS#11. The API is a library – a DLL in Windows, a shared object in Solaris, AIX, and Linux, – called Chrystoki. Applications wanting to use token services must connect with Chrystoki.

In addition, support is provided for Microsoft’s cryptographic APIs (CAPI/CNG) and Oracle’s Java Security API.

The extensions to each API enable optimum use of SafeNet hardware for commonly used calls and functions, where the unaugmented API would tend to use software, or to make generic, non-optimized use of available HSMs.

Table 1: SafeNet libraries by platform
Platform Key name Libraries
Windows LibNT

X:\Program Files\SafeNet\LunaClient\cryptoki.dll

X:\Program Files\SafeNet\LunaClient\cklog201.dll
X:\Program Files\SafeNet\LunaClient\shim.dll

X:\Program Files\SafeNet\LunaClient\LunaCSP\LunaCSP.dll

C:\WINDOWS\system32\SafeNetKSP.dll
Solaris (32-bit) LibUNIX /opt/safenet/lunaclient/lib/libCryptoki2.so
/opt/safenet/lunaclient/lib/libcklog2.so
/opt/safenet/lunaclient/lib/libshim.so
Solaris (64-bit) LibUNIX64 /opt/safenet/lunaclient/lib/libCryptoki2_64.so
/opt/safenet/lunaclient/lib/libcklog2.so
/opt/safenet/lunaclient/lib/libshim_64.so
Linux (32-bit) LibUNIX

/usr/safenet/lunaclient/lib/libCryptoki2.so

/usr/safenet/lunaclient/lib/libcklog2.so
/usr/safenet/lunaclient/lib/libshim.so
Linux (64-bit)

LibUNIX64

/usr/safenet/lunaclient/lib/libCryptoki2_64.so

/usr/safenet/lunaclient/lib/libcklog2.so
/usr/safenet/lunaclient/lib/libshim_64.so
AIX (32-bit and 64-bit) LibAIX /usr/safenet/lunaclient/lib/libCryptoki2.so
/usr/safenet/lunaclient/lib/libCryptoki2_64.so
/usr/safenet/lunaclient/lib/libcklog2.so
/usr/safenet/lunaclient/lib/libshim.so

Included with SafeNet Product Software Development Kit is a sample application – and the source code – to accelerate integration of SafeNet’s cryptographic engine into your system.

NOTE   To reduce development or adaptation time, you may re-distribute the salogin program to customers who use SafeNet Luna PCIe HSM, in accordance with the terms of the End User License Agreement. However, you may not re-distribute the SafeNet Software Development Kit itself.


Customer Support Portal

SafeNet Luna PCIe HSM 7.3 Product Documentation  13 December 2019  Copyright 2001-2019 Thales. All rights reserved.