CryptoServer Browse CD Documentation

Documentation


Installation and Administration

  • The User Guide provides an overall overview on the CryptoServer system and its various hardware and software parts, as well as a detailled installation guide. Additionally the usage of the CryptoServer Administration Tool CAT is explained here.
  • The CryptoServer Installation Manual shows how to assemble the CryptoServer PCI card in your PC and how to install the appropriate drivers for a Windows or Linux platform.
  • The CryptoServer LAN Operating Manual shows how to fit the CryptoServer LAN in your LAN.
  • The CryptpServer LAN User Manual shows how to administrate and configure the CryptoServer LAN. All CryptoServer LAN commands will be explained in detail.
  • The Admininstration Guide gives comprehensive guidelines on the administration of the CryptoServer.

Application Programming

  • The CryptoServer Core Interface (CXI) offers various cryptographic services:
    • key generation (DES, AES keys or RSA and ECDSA key pairs at various lengths)
    • symmetric encryption / decryption (in various DES and AES modes)
    • MAC calculations (based on DES or AES algorithm)
    • sign data / verify signature (RSA and ECDSA signature)
    • hashing algorithms (SHA-1, RIPE-MD 160, MD5, SHA-224, SHA-256, SHA-384, SHA-512)
    • random number generation (with True RNG or Deterministic RNG)
    Additionally, key management functions like import and export of a wrapped key are offered.
    The CXI API provides an interface to the CryptoServer firmware module CXI. To use this interface the firmware module must be loaded into the CryptoServer and the application must be able to load the specific shared library (DLL/SO).
    Further documentation can be found in the CXI Documentation.
  • The former Cryptograpic Service Interface (CSI) is deprecated and not supposed to be used for new projects, although the CSI Programming Guide is still available.
  • In Windows Systems a Cryptographic Service Provider (CSP) makes cryptographic algorithms and mechanisms available that can be addressed from any application over the Microsoft CryptoAPI. For this purpose, the upper (user) interface of the CryptoAPI as well as the lower (CSP) interface of Microsoft are documented. The CryptoServer CSP Specification shows how to use the CryptoServer as a CSP.
  • The CryptoServer Application Interface (CSAPI) is a low level programming interface to access the external functions of the CryptoServer security module from an application running on a host. Here you can find the CSAPI specification
    There is also an extended version of the CSAPI, which additionally offers support for authentication and secure messaging. See CSXAPI specification for detailed information.
  • All error codes returned by a call to a CryptoServer function are listed together with some further explanations in the error reference.

FIPS Mode

The CryptoServer is certified according to FIPS 140-2, Level 3 with Level 4 in 'Physical Security'. FIPS 140-2 is a security standard which is defined for cryptographic modules. The CryptoServer is said to run in FIPS mode if a special, FIPS-approved set of firmware is loaded.
  • The FIPS User Guide provides an overall overview and the usage off the CryptoServer running in FIPS mode.
  • The FIPS Admininstration Guide gives comprehensive guidelines on the administration of the CryptoServer running in FIPS mode.