creator/Anthropic-Cybersecurity-Skills
1
0
Fork 0
mirror of https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git synced 2026-06-14 23:14:55 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
d5f3fa32486ea335db802d68fe2147fa2da69583
Anthropic-Cybersecurity-Skills/skills/configuring-hsm-for-key-storage/references/api-reference.md
T
mukul975 c21af3347e Complete folder anatomy for all 649 cybersecurity skills + update LICENSE to Mahipal 
- Add scripts/agent.py and references/api-reference.md to all remaining skills
- Update all 648 LICENSE files: copyright now reads 'Mahipal'
- Add implementing-security-monitoring-with-datadog (new skill with full anatomy)
- All 649 skills now have: SKILL.md, LICENSE, scripts/agent.py, references/api-reference.md
2026-03-11 00:22:12 +01:00

51 lines
1.8 KiB
Markdown
Raw Blame History

# HSM Key Storage — API Reference
## Libraries
| Library | Install | Purpose |
|---------|---------|---------|
| boto3 | `pip install boto3` | AWS CloudHSM and KMS API |
| python-pkcs11 | `pip install python-pkcs11` | PKCS#11 interface for HSM operations |
## Key boto3 CloudHSMv2 Methods
| Method | Description |
|--------|-------------|
| `describe_clusters()` | List CloudHSM clusters |
| `describe_backups()` | List cluster backups |
| `create_cluster(HsmType, SubnetIds)` | Create new cluster |
| `create_hsm(ClusterId, AvailabilityZone)` | Add HSM to cluster |
| `initialize_cluster(ClusterId, SignedCert, TrustAnchor)` | Initialize cluster |
## Key boto3 KMS Methods (Custom Key Store)
| Method | Description |
|--------|-------------|
| `create_custom_key_store()` | Create KMS custom key store backed by CloudHSM |
| `describe_key(KeyId)` | Get key metadata including CustomKeyStoreId |
| `create_key(Origin="AWS_CLOUDHSM", CustomKeyStoreId=)` | Create key in HSM |
## PKCS#11 Operations
| Function | Description |
|----------|-------------|
| `C_Initialize` | Initialize PKCS#11 library |
| `C_OpenSession` | Open session with HSM |
| `C_Login` | Authenticate with HSM PIN |
| `C_GenerateKeyPair` | Generate asymmetric key pair |
| `C_Sign / C_Verify` | Cryptographic signing operations |
## HSM Types
| Type | Use Case |
|------|----------|
| AWS CloudHSM | Cloud-native FIPS 140-2 Level 3 |
| Thales Luna | On-premises enterprise HSM |
| nCipher nShield | High-assurance code signing |
## External References
- [AWS CloudHSM Docs](https://docs.aws.amazon.com/cloudhsm/)
- [boto3 CloudHSMv2](https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/cloudhsmv2.html)
- [PKCS#11 Standard](https://docs.oasis-open.org/pkcs11/pkcs11-base/v2.40/pkcs11-base-v2.40.html)
Reference in New Issue View Git Blame Copy Permalink