i wrote such a JCE provider some time ago. i used the alpha version of the
GPK card services. after this project i came to the conclusion: it will not
be possible to write it based on OCF so that it will work for any card
providing the required card services.
just to give one reason, have a look at the access control. you have to pass
a "appropriate" byte or byte array. unfortunately, this is quite bad,
because you always need to know in your application what card you currently
work with. simply for this reason you need to adapt your application (e.g.
the provider) for each card.
another big problem is that there is only the reference implementation of
the card services for IBM cards, which is the only really finished card
service implementation, if you look for crypto cards. i know that other
manufacturers claim to support OCF for their cards, but i have not seen card
service drivers which are usable in a production environment.
even though, there is a link for card services from schlumberger at the
OpenCard web-page about supported devices, i can really find no drivers for
these cards for download. perhaps, someone can provide a direct link.
after development of this JCE provider, i made several suggestions for
improvements to Sun for their JCE SPI and also to OpenCard. all of them
seemed to be interested. they asked me to send them the first prototype. i
did. i never heard again anything from them.
after following OpenCard for a while, it seems that the manufacturers are
not relly interested to push OpenCard. moreover, the progress of OpenCard is
very, very slow. sometime, i have the impression that the manufacturers do
not work on OpenCard any longer. just have a look at
http://www.opencard.org/work/, "the future of opencard". this page got its
last update at october 1999. the latest documents, RFCs, RFPs are dated
september 1999.
i would like to hear a clear statement from the manufacturer that claim to
support OpenCard. what are their plans and until when will they have
finished drivers for their products.
regards
Karl
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, January 11, 2001 4:51 PM
> To: [EMAIL PROTECTED]
> Subject: RE: [OCF] Smart cards and SSL
>
>
>
> I've been thinking and reading a bit and came to the conclusion
> that what I
> need is a JCE SPI implementation for OpenCard. To plug a smart card in the
> Java Platform transparently and have it encrypt, decrypt, sign, etc. data
> the card must provide a Provider implementation. At first, I thought an
> implementation for an OpenCard Provider would be enough, being OCF
> responsible for insulating the services interface from the
> particular card,
> but now I am not so sure. Maybe each card should have its own Provider
> implementation shipped with its OpenCard drivers...
> Any comments?
> Regards,
> Douglas
>
> ...
---
> Visit the OpenCard web site at http://www.opencard.org/ for more
> information on OpenCard---binaries, source code, documents.
> This list is being archived at http://www.opencard.org/archive/opencard/
! To unsubscribe from the [EMAIL PROTECTED] mailing list send an email
! to
! [EMAIL PROTECTED]
! containing the word
! unsubscribe
! in the body.
