Patrick is correct about the statement. We have since improved the wording of the statement to make the distinction clearer (fromGeneral Information - SAP NetWeaver Application Server ABAP Security Guide - SAP Library):
Security Product
SSF requires the use of a security product to perform its functions. Per default, we deliver the SAP Cryptographic Library as the security provider. For more information, see SAP Note 1848999 
..
For support of cryptographic hardware (for example, smart cards or hardware security modules) or digital envelopes, you need to use an external security product. SAP offers SAP NetWeaver Single Sign-On in addition to external security products offered by our partners.
For SAP-certified partner products, see the SAP Software Partner Program on the SAP Service Marketplace (SSF interface).
Sorry for the confusion.
-Michael