CDSA_intro, cdsa_intro, CDSA, cdsa, libcssm, libcssm_intro
- Common Data Security Architecture (CDSA) implemented as
library (libcssm) and plug-in security service modules
# include <cdsa/cssm.h>
Common Security Services Manager library (libcssm.so)
CDSA is a multiplatform, industry standard security
infrastructure. It provides a standards-based, stable
programming interface that applications can use to access
operating system security services, allowing developers
to create cross-platform, security-enabled applications.
Applications request security services, such as cryptography
and other public key operations, through a dynamically
extensible application programming interface (API). These
requests are serviced by a set of plug-in security service
modules (SPIs), which can be supplemented or changed as
business needs and technologies evolve.
The heart of CDSA is the Common Security Services Manager
(CSSM), which defines both the application API and the
service provider interface (SPI) for plug-in security service
modules. CSSM includes a set of core services that
are common to all categories of security services, performing
such functions as integrity verification and
authentication.
Available types of plug-in modules include cryptographic
services (CSP), certificate library (CL), data library
(DL), trust policy (TP) and authorization computation
(AC). CSSM is extensible.
Applications call functions in the CSSM API, which is
fully specified by the CDSA technical standard located at
http://www.opengroup.org/onlinepubs/009609799/. API function
names are prefaced with CSSM_ and sometimes followed
by the designation of the module that will actually handle
the request. For instance, an application calls
CSSM_DL_DbOpen() to direct a DL module to open a data
store. The associated service provider interface (SPI) for
the module would be DL_DbOpen().
An application begins by initializing its connection to
CSSM using the CSSM_Init() routine. It might use Module
Directory Services (MDS) to query for available modules
and their supported functionality, or it might hardcode to
a particular module's global unique identifier (GUID).
The application loads the desired module using the
CSSM_ModuleLoad() routine and then attaches to it using
the CSSM_ModuleAttach() routine.
Errors are described in the CDSA technical standard,
located at http://www.opengroup.org/onlinepubs/009609799/.
A code example of a DES program is provided on your system
at /usr/examples/cdsa/des.
Guides: Security Administration Security Programming
For Open Source CDSA information and source:
http://sourceforge.net/projects/cdsa/
For general CDSA and security information:
http://www.intel.com/ial/security/ http://www.open-
group.org/security/l2-cdsa.htm
Functions: AC_AuthCompute(3), AC_PassThrough(3),
CL_CertAbortCache(3), CL_CertAbortQuery(3), CL_CertCache(3), CL_CertCreateTemplate(3), CL_CertDescribeFormat(3), CL_CertGetAllFields(3), CL_CertGetAllTemplateFields(3), CL_CertGetFirstCachedFieldValue(3), CL_CertGetFirstFieldValue(3), CL_CertGetKeyInfo(3), CL_CertGetNextCachedFieldValue(3), CL_CertGetNextFieldValue(3),
CL_CertGroupFromVerifiedBundle(3), CL_CertGroupToSignedBundle(3), CL_CertSign(3), CL_CertVerify(3), CL_CertVerifyWithKey(3), CL_CrlAbortCache(3), CL_CrlAbortQuery(3),
CL_CrlAddCert(3), CL_CrlCache(3), CL_CrlCreateTemplate(3),
CL_CrlDescribeFormat(3), CL_CrlGetAllCachedRecordFields(3), CL_CrlGetAllFields(3), CL_CrlGetFirstCachedFieldValue(3), CL_CrlGetFirstFieldValue(3), CL_CrlGetNextCachedFieldValue(3), CL_CrlGetNextFieldValue(3),
CL_CrlRemoveCert(3), CL_CrlSetFields(3), CL_CrlSign(3),
CL_CrlVerify(3), CL_CrlVerifyWithKey(3), CL_FreeFieldValue(3), CL_FreeFields(3), CL_IsCertInCachedCrl(3),
CL_IsCertInCrl(3), CL_PassThrough(3), CSP_EventNotify(3),
CSSM_CSP_ChangeLoginAcl(3), CSSM_CSP_ChangeLoginOwner(3),
CSSM_CSP_CreateAsymmetricContext(3), CSSM_CSP_CreateDeriveKeyContext(3), CSSM_CSP_CreateDigestContext(3),
CSSM_CSP_CreateKeyGenContext(3), CSSM_CSP_CreateMacContext(3), CSSM_CSP_CreatePassThroughContext(3),
CSSM_CSP_CreateRandomGenContext(3), CSSM_CSP_CreateSignatureContext(3), CSSM_CSP_CreateSymmetricContext(3),
CSSM_CSP_GetLoginAcl(3), CSSM_CSP_GetLoginOwner(3),
CSSM_CSP_Login(3), CSSM_CSP_Logout(3), CSSM_ChangeKeyAcl(3), CSSM_ChangeKeyOwner(3), CSSM_DeleteContext(3),
CSSM_DeleteContextAttributes(3), CSSM_FreeContext(3),
CSSM_GetAPIMemoryFunctions(3) CSSM_GetContext(3),
CSSM_GetContextAttribute(3), CSSM_GetKeyAcl(3),
CSSM_GetKeyOwner(3), CSSM_GetModuleGUIDFromHandle(3),
CSSM_GetPrivilege(3), CSSM_GetSubserviceUIDFromHandle(3),
CSSM_Init(3), CSSM_Introduce(3), CSSM_ListAttachedModuleManagers(3), CSSM_ModuleAttach(3), CSSM_ModuleDetach(3),
CSSM_ModuleLoad(3), CSSM_ModuleUnload(3), CSSM_SPI_ModuleAttach(3), CSSM_SPI_ModuleDetach(3), CSSM_SPI_ModuleLoad(3), CSSM_SPI_ModuleUnload(3), CSSM_SetContext(3),
CSSM_SetPrivilege(3), CSSM_TP_RetrieveCredResult(3),
CSSM_Terminate(3), CSSM_Unintroduce(3), CSSM_UpdateContextAttributes(3), DL_Authenticate(3), DL_ChangeDbAcl(3),
DL_ChangeDbOwner(3), DL_CreateRelation(3), DL_DataAbortQuery(3), DL_DataDelete(3), DL_DataGetFirst(3),
DL_DataGetFromUniqueRecordId(3), DL_DataGetNext(3),
DL_DataInsert(3), DL_DataModify(3), DL_DbClose(3),
DL_DbCreate(3), DL_DbDelete(3), DL_DbOpen(3),
DL_DestroyRelation(3), DL_FreeNameList(3), DL_FreeUniqueRecord(3), DL_GetDbAcl(3), DL_GetDbNameFromHandle(3),
DL_GetDbNames(3), DL_GetDbOwner(3), DL_PassThrough(3),
DecryptData(3), DecryptDataFinal(3), DecryptDataInit(3),
DecryptDataInitP(3), DecryptDataP(3), DecryptDataUpdate(3), DeregisterDispatchTable(3), DeriveKey(3), DigestData(3), DigestDataClone(3), DigestDataFinal(3), DigestDataInit(3), DigestDataUpdate(3), EncryptData(3), EncryptDataFinal(3), EncryptDataInit(3), EncryptDataInitP(3),
EncryptDataP(3), EncryptDataUpdate(3), EventNotifyManager(3), FreeKey(3) , GenerateAlgorithmParams(3), GenerateKey(3), GenerateKeyP(3), GenerateKeyPair(3), GenerateKeyPairP(3), GenerateMac(3), GenerateMacFinal(3), GenerateMacInit(3), GenerateMacUpdate(3), GenerateRandom(3),
GetOperationalStatistics(3), GetTimeValue(3), Initialize(3), MDS_Initialize(3), MDS_Install(3), MDS_Terminate(3), MDS_Uninstall(3), ModuleManagerAuthenticate(3),
ObtainPrivateKeyFromPublicKey(3), PassThrough(3),
QueryKeySizeInBits(3), QuerySize(3), RefreshFunctionTable(3), RegisterDispatchTable(3), RetrieveCounter(3), RetrieveUniqueId(3), SignData(3), SignDataFinal(3), SignDataInit(3), SignDataUpdate(3), TP_ApplyCrlToDb(3), TP_CertCreateTemplate(3), TP_CertGetAllTemplateFields(3), TP_CertGroupConstruct(3), TP_CertGroupPrune(3),
TP_CertGroupToTupleGroup(3), TP_CertGroupVerify(3),
TP_CertReclaimAbort(3), TP_CertReclaimKey(3),
TP_CertRemoveFromCrlTemplate(3), TP_CertRevoke(3),
TP_CertSign(3), TP_ConfirmCredResult(3), TP_CrlCreateTemplate(3), TP_CrlSign(3), TP_CrlVerify(3), TP_FormRequest(3), TP_FormSubmit(3), TP_PassThrough(3), TP_ReceiveConfirmation(3), TP_SubmitCredRequest(3), TP_TupleGroupToCertGroup(3), Terminate(3), UnwrapKey(3), UnwrapKeyP(3),
VerifyData(3), VerifyDataFinal(3), VerifyDataInit(3), VerifyDataUpdate(3), VerifyDevice(3), VerifyMac(3), VerifyMacFinal(3), VerifyMacInit(3), VerifyMacUpdate(3), WrapKey(3), WrapKeyP(3), cssm_CcToHandle(3), cssm_DeregisterManagerServices(3), cssm_GetAppMemoryFunctions(3),
cssm_GetAttachFunctions(3), cssm_GetModuleInfo(3),
cssm_IsFuncCallValid(3), cssm_ReleaseAttachFunctions(3).
CDSA_intro(3)
[ Back ] |
