Crypto hardware crates
iamihalcea opened this issue ยท 7 comments
Hi!
I was looking at the list of crates mentioned for interfacing with crypto hardware tokens on Awesome Rust Cryptography, and wanted to propose a few more crates:
- tss-esapi for interfacing with TPM 2.0 devices
- cryptoki for devices exposing a PKCS11 interface
- cryptoauthlib for ATECCx08a devices.
Disclaimer: I have a vested interest in the first two crates as one of the main developers, but I think our cryptoki crate is a better option for interfacing with PKCS11 given that pkcs11 seems to have been abandoned. cryptoki is essentially a fork of that one with a bunch of work done on top, mostly to make the interface safer to use.
Should I make a PR adding them to the list?
Please make a PR, yes,
@mheese can you advise about the maintenance status of the pkcs11 crate? We are trying to only include actively maintained crates in the Awesome Rust Cryptography list. It looks like it's received some attention but hasn't had a release in awhile.
@tarcieri - any thoughts on what should be done with pkcs11?
New issue popped-up in the repo today: mheese/rust-pkcs11#54
@ionut-arm a PR to remove it would be accepted as it seems to be unmaintained.
Likewise you might consider filing an unmaintained crate advisory for pkcs11 at: https://github.com/rustsec/advisory-db
@tarcieri as I drowned in github notifications and other work, this only gets my attention right now. Yes, it is (obviously) not maintained anymore. Glad to see that the work seemed to have been of some use to @iamihalcea though ๐
Also, happy to discuss if any of you want to take over the pkcs11 crate name.
If one of the existing PKCS#11 projects like cryptoki wants pkcs11 that's cool. If not, the @RustCrypto org has the other pkcs* crate names and we'll take it (although we wouldn't plan on publishing a crate under it, just in case the other projects go defunct)