On 11/27/06, Eddy Nigg (StartCom Ltd.) <[EMAIL PROTECTED]> wrote:
Alon Bar-Lev wrote:
3. If the user removes and inserts his card, the application should
reprompt for PIN when private object is accessed.
4. If the user removes the card from one reader and insert it to
another reader, the application should detect that it is the same
card, and not prompt the user for credentials again. This two statements
above contradict each other....
Credentials != PIN...
For example, when you open SSL connetion, you are prompt for your
certificate (credentials) to be used as client certificate, now the
key negotiation occurs, and you are prompt for PIN.
Remove the card from one reader, insert it to a second one, now when
the browser performs key negotiation again, it should prompt for PIN
only, since you had already selected the certificate.
Best Regards,
Alon Bar-Lev.
_______________________________________________
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-devel
