2010/4/16 Anders Rundgren <anders.rundg...@telia.com>: > If you wanted to provide a USB PKI token that would give the user maximum > flexibility it seems that the device should support CCID. > > 1. As I understand,CCID only provides the basic communication and does not > address higher level issues such as PKI, right? Yes, CCID is the best choice for USB level communication (as it is standard, other USB protocols would be proprietary).
CCID is about "exchanging APDU-s over USB" and PKI is a whole different story. TCP is for HTTPS what CCID is for PKI. > 2. Would a token that emulates FIPS201 and CCID be usable in most > systems as is or is there another emulation that would be better? Depends. I don't know the exact relation of FIPS201 to other standards. > 3. You would need to "hijack" somebody else ATR in order to emulate > in a (for the user) hassle-free way? Not really. It would not be nice and usually operations depends on the card applet, not the ATR. > 4. Other question: CCID allows you to exchange arbitrary data between > the token and the host, right? Arbitrary APDU-s so basically yes. _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
