Hi Marten and Peter,
This is true. In fact, you do not even need to use https, nor do you need to have
the browser use https. A regular unencrypted web page would do for hosting the
applet. All you need is an SSL client library and server library so you can create
an SSL connection between your applet and your server program. A Java version of
this is available from Phaos Technology. It is widely used in many products. The
URL is http://www.phaos.com.
Cliff
[EMAIL PROTECTED] wrote:
> Marten,
>
> you could use https without client authorization at the browser level (or
> even omit that)
> and open a new https session from the applet that uses a smart card to
> perform
> client authentication.
> What you need is a client side SSL implementation (well, actually a java
> https protocol handler) that uses opencard
> and the smartcard to perform the client side signing.
> Unfortunately I do not know of any such implementation.
>
> Peter Bendel, Smartcard Solutions, Tel.: +49-7031-16-4650, Fax -4888
> Dept. 4969, Bldg. 7103-01, Room 01-109 Lotus Notes: bed@ibmde
> IBM Pervasive Computing Division Internet: [EMAIL PROTECTED]
>
> Please visit the OpenCard Framework's homepage at http://www.opencard.org
>
> Visit the OpenCard Framework's WWW site at http://www.opencard.org/ for
> access to documentation, code, presentations, and OCF announcements.
> -----------------------------------------------------------------------------
> To unsubscribe from the OCF Mailing list, send a mail to
> "[EMAIL PROTECTED]" with the word "unsubscribe" in the BODY of the
> message.
Visit the OpenCard Framework's WWW site at http://www.opencard.org/ for
access to documentation, code, presentations, and OCF announcements.
-----------------------------------------------------------------------------
To unsubscribe from the OCF Mailing list, send a mail to
"[EMAIL PROTECTED]" with the word "unsubscribe" in the BODY of the
message.
