Re: Encryption of data in smart cards

John Kelsey
Thu, 13 Mar 2003 10:12:51 -0800

At 11:08 PM 3/12/03 +0100, Krister Walfridsson wrote:

...

This is not completely true -- I have seen some high-end cards that use
the PIN code entered by the user as the encryption key.  And it is quite
easy to do similar things on Java cards...

With any kind of reasonable PIN length, though, this isn't all that helpful, because of the small set of possible PINs. And smartcards don't generally have a lot of processing power, so making the PIN->key mapping expensive doesn't help much, either.

/Krister

--John Kelsey, [EMAIL PROTECTED]

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]

Reply via email to