Lib.rs

Cryptography
#hsm #signing #encryption

nethsm

A high-level library to interact with the API of a Nitrokey NetHSM

Owned by David Runge.

1 unstable release

0.1.0 Mar 23, 2024

#1587 in Cryptography

Download history 140/week @ 2024-03-19 10/week @ 2024-03-26 20/week @ 2024-04-02

170 downloads per month

Apache-2.0 OR MIT

155KB
1.5K SLoC

NetHSM

A high-level library abstracting the use of the nethsm-sdk-rs library.

The NetHSM is a hardware appliance, that serves as secure store for cryptographic keys. With the help of a REST API it is possible to communicate with the device (as well as the official nethsm container) for setup and various cryptographic actions.

The nethsm-sdk-rs library is auto-generated using openapi-generator. This leads to a broad API surface with sparse documentation, that this crate attempts to rectify with the help of a central struct used for authentication setup and communication.

Testing

This library is integration tested against Nitrokey's official nethsm container. To run these long running tests a podman installation with running systemd user socket (podman.socket) is required, as the tests handle the creation and teardown of containers as needed.

cargo test --all -- --ignored

License

This project is licensed under the terms of the Apache-2.0 and MIT.

Dependencies

~71MB
~2M SLoC