Felipe Blauth wrote: > Do you know any way of secure pin while it travels from the > computer to the card?
It's called Secure Messaging, or SM for short. > The problem here is that the pin needed to log in the Smart Card > travels in an insecure way, while it goes trough the wire from the > HSM to the Smart Card. Yes. Look for SM. I don't know if PKCS#11 has explicit support for it though, so maybe SM will terminate within OpenSC, and then you'll still have the plaintext PIN within the p11 host app and the p11 module. Maybe that's OK, I don't know how much you trust the fbsd system in the HSM. Another option might be to use a pinpad reader instead. //Peter _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
