KMIP Interop

KMIP provides a protocol definition for interoperability between client and server systems for management of cryptographic material.

Refer to OASIS KMIP for details as to the current status of the KMIP standard.

Public interop results are in the OASIS KMIP mailing list achives for for JAN 2014, JULY 2013, JAN 2013, and JAN 2012. Summary graphs of results are available under results

Vendors for OASIS KMIP 2014 Interop at the RSA USA Conference 24-Feb-2014 are listed below: Note: PKCS11 interoperability is also being demonstrated at the same booth.

Vendors for OASIS KMIP 2013 Interop at the RSA USA Conference 25-Feb-2013 were: Vendors for OASIS KMIP 2012 Interop at the RSA USA Conference 14-Feb-2012 are listed below: Vendors for KMIP 2011 Interop at the RSA USA Conference 14-Feb-2011 are listed below: Vendors for KMIP 2010 Interop at the RSA Conference in the USA on 2-Mar-2010 are listed below:
  • IBM (client and server)
  • HP (client and server)
  • SafeNet (client)
Additionally the following vendors announced KMIP related details subsequent to the RSA USA Conference in 2010: There is a separate interop mailing list for those vendors who are participating in the informal testing of interoperability between implementations.

Client

Testing of a client-side implementation.

The Cryptsoft KMIP Server supports the basic use cases from the KMIP use case document and is available for network-based interop testing if you have a client implementation to test.

The Cryptsoft KMIP Client has completed successful interop testing with the KMIP Server implementations (for the subset of the use cases supported by each vendor implementation) from Cryptsoft, EMC, HP and IBM.

Server

Testing of a server-side implementation.

The Cryptsoft KMIP Client supports all the use cases from the KMIP use case document and is available for network-based interop testing against your server implementation.

The Cryptsoft KMIP Server has completed successful interop testing with the KMIP Client implementations from Cryptsoft, EMC, HP, IBM and SafeNet,

Protocol

Testing of a protocol-level implementation.

The Cryptsoft KMIP SDK contains a full set of protocol parsing and processing routines and sample applications. It can be used independent of a network transport but also includes support for using OpenSSL to provide a TLSv1 implementation.

Training

Training for KMIP development and deployment.

Cryptsoft offers implementation experience with both the client and server side of the KMIP standard.

Find out more …

Use Cases

The use cases from the KMIP specification in various formats is contained here. The use cases listed only cover a subset of the KMIP specification, however they do provide a concrete view of the protocol.

These were automatically produced from the use case and standard document which is available at http://www.oasis-open.org/committees/download.php/37498/kmip-usecases-1.0-cd-09.pdf

KMIP Parser

Cryptsoft also provides an online KMIP packet parser which outputs the details of a KMIP packet in a range of formats. See /kmip/parse/ for the form to submit KMIP packets to the parser. A good place for examples of KMIP packets is the use case document.

OASIS

Cryptsoft is a Sponsor Level Member of OASIS and an active participant in the KMIP TC and co-editors of a number of the KMIP specification documents.

www.oasis-open.org