Jean-Michel Pouré - GOOZE wrote: > > Short slogans are better. I suggest simply "Protect your privates" > > As we are focusing on consolidation, I would suggest: > "Crypto consolidation conference".
The slogan I mentioned was in reply to Martin's ideas on the http://www.opensc-project.org/opensc/wiki/FOSDEM2011 page. Check it out. Near the bottom. > We could have this conference every year. > It is quite straightforward and everyone understands. Organizing a complete conference is *a lot* of work, even if it is kept small and limited in scope. I know that I don't really have enough time for that. However, I think a FOSDEM devroom where we do some of the same things would be a good start, both because FOSDEM is a nice environment, but also because many people already plan to go there. > I would suggest: > Day 1 : Crypto consolidation conference > Day 2 : Hacking session, code sprint and training. I do not disagree. I think this would be very nice, but I've organized enough events to know the work that it takes. :) > @Peter. > * Thanks for the links of projects that I was not aware of! If NSS is > crap, then we should discuss in details of all these issues. I don't think this is really news to NSS people, it was just news to me. And obviously the advantages are more important; it is a more stable candidate as far as FIPS certification goes. > * Software store should rely on hardware crypto. Gnome-Keyring actually > relies on password to protect software stores. It should at least rely > on certificates to be able to crypt software stores. This is a good point, but have a look at the gnome-keyring graphics that Martin linked to: http://live.gnome.org/GnomeKeyring/Architecture gnome-keyring uses p11 extensively, and it seems that the user store could just be swapped for a hard p11 and all is good. > * A software store should be able to keep any information, even large > files. This seems quite straightforward, but i am not aware of a > software store which handles large files. For example, I would like to > keep my company accounting. How do I do that in GNU/Linux? The only way > is to crypt a partition and this is not easy. This is an important use of crypto and it is a good high level requirement that encrypted storage must be easy to manage, but that does not mean that the storage should be *inside* p11 tokens. I think p11 is abused enough as it is, and it doesn't want to take anymore. Maybe there's room for a volume manager API if there isn't already one, maybe Seahorse could play a part, etc. One problem that Martin pointed to is that there is no single GUI, so most work needs to be in middleware in order to be generally useful. I only want to run xdm, but I still want it to support cards. //Peter
pgpzbNLxFVboE.pgp
Description: PGP signature
_______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
