GnuPG is an important PGP implementation. Its support of the standard Cryptoki API, supported by most manufacturers of cryptographic smart cards would be useful.

Many would like to see GnuPG support the PKCS #11 standard, also referred to as Cryptoki, for signing and decryption. This API standard is widely implemented for smart cards and cryptographic USB devices such as the ePass2000 token.

It would be good to have GnuPG support such this general API, and to do so in publicly available code. The problem --for commercial development-- is that GnuPG falls under the GNU license.

The GNU license dictates that all additions must be open source. Not a problem in itself, but it means that we cannot make money from such code. We therefore have to collect it upfront. And that is the purpose of this project: to find funding parties who are willing to invest in this piece of functionality.

Goal

Supporting the general Cryptoki API for use with GnuPG, at no charge and as open source code.

Applications

Linux users currently have no option to use GnuPG with the RSA token of their choice.

Initiator

OpenFortress Digital signatures

Status

Collecting funds.

Investors

Estimated project cost is EUR 7500.
OpenFortress Digital signatures: 25% of the project cost over 2005.

More investors are needed. Please let us know if you are interested in this project. Or just edit this page and add your donation. Forward this page URL to anyone who may be interested.

Process

Constructing a patch on the GnuPG distribution. The patch will be published on the OpenFortress open source outlet and offered for inclusion in general GnuPG.

Updates

2006-10-13: PKCS#11 support in GnuPG is available, please refer to http://gnupg-pkcs11.sourceforge.net/

edit this page