Ludovic,
Our original versions from a couple of years back used the OpenSSL in
the operating system but we found that the potential changes in
OpenSSL on the OS especially in varying Linux distributions made it
unstable. We do site verification in the plugin but it is based off
PKI so we needed OpenSSL. We also verify all code coming from the
server and use it to do some nifty PKCS#7 stuff. We had to try and
tackle the phishing and authentication problem at the same time.
Everyone is attempting to tackle the combined anti-phishing and
authentication these days.
It's difficult to create a stable system like this - there are a lot
of scalability tests, and environment tests that need to be done.
There are hundreds of proxies and client side anti-spyware programs
out there that can make this difficult to pull off.
It does use PC/SC and PCSC-Lite. It also can talk outside of PC/SC
to other form factor media devices. That device list definitely
needs to be updated - we support a lot of other devices - those are
just the ones in our test matrix. The cross-platform biometric match
on card support is probably the coolest that we support.
We have some interesting plans for all of this but you probably won't
see it through us.
Thanks,
Dave
------------------------------------------------------------------------
------------
David Corcoran
TrustBearer Labs http://www.trustbearer.com
phone: 260-399-1648
Get a hardware secured OpenID at: openid.trustbearer.com
------------------------------------------------------------------------
-------------
_______________________________________________
Muscle mailing list
[email protected]
http://lists.drizzle.com/mailman/listinfo/muscle
