Manage communication with the HSM

  • Published on Jul 9, 2025
  • 1 minute(s) read
Prev Next

The Authentication Suite Server SDK for Thales ProtectServer HSM host side library does not manage the communication with the HSM. Communication with the Thales ProtectServer HSM (Thales ProtectServer Cryptoki library initialization, session opening, Authentication Suite Server SDK command transactions, session closing, Thales ProtectServer Cryptoki library finalization) needs to be implemented in the integrator application:

  • Thales ProtectServer Cryptoki library initialization: The PKCS#11 Cryptoki library of the HSM is initialized.

    Use the C_Initialize() method of the Thales ProtectServer HSM host API.

  • Session opening: A connection to the Thales ProtectServer HSM has to be established.

    Use the C_OpenSession() method of the Thales ProtectServer HSM host API.

  • Authentication Suite Server SDK command transaction: An Authentication Suite Server SDK command generated with the Authentication Suite Server SDK host API can be executed in the FM module.

    Use the C_Digest() method of the Thales ProtectServer HSM host API.

  • Session closing: A connection to the Thales ProtectServer HSM is closed.

    Use the C_CloseSession() method of the Thales ProtectServer HSM host API.

  • Thales ProtectServer Cryptoki library finalization: The PKCS#11 Cryptoki library of the HSM is released.

    Use the C_Finalize() method of the Thales ProtectServer HSM host API.

Authentication Suite Server SDK for Thales ProtectServer HSM contains samples that demonstrate the communication between a host application and the HSM to perform Authentication Suite Server SDK command transactions with the Authentication Suite Server SDK FM module.