Using opaque objects

Updated: May 15, 2017

In addition to keys for the algorithms described in Algorithm Support, SmartKey has the ability to store “opaque” objects. An opaque object can be used to store arbitrary data, which may or may not be sensitive. SmartKey does not perform cryptographic operations using opaque objects, but clients can fetch the value of the opaque object from SmartKey.

Possible uses of opaque objects include:

  • Storing the TLS certificate associated with an RSA private key object
  • Storing passwords or other non-cryptographic secrets
  • Storing keys for algorithms not natively supported by SmartKey

Opaque objects are created using the import security object API. They may later be retrieved using the get security object API.

Opaque objects can also be imported using the web interface.