Am Mittwoch 26 Januar 2011, um 12:12:42 schrieb Nikos Mavrogiannopoulos: > I don't understand what you mean by a reasonable enrollment system, however > having seen the EMV protocol, I believe that the available PKCS #11 > compatible smart-cards have a much higher security level than EMV bank > cards. It seems the only criteria for banks evaluating protocols and > technologies is their complexity.
hu? can you go into details? I learned a lot about EMV in the past 10 months, and it doesn't seem hard to me. Of course there is a lot of complexity involved, but it is a partly online partly offline payment system with a very complex decission system (accept transaction offline or online or decline based on many different factors that can be personalized as parameters). a pure pkcs#11 card has something like 10% of the number of features that an EMV card has? so comparing those two and complaining about complexity seems to be quite unfair to me. Still I think we could learn from EMV and friends, for example companies with many employees might want a system to change cards in some remote reader in a secure way. Some banks can do that with scripting on emv cards, and the mechanism involved don't seem so hard. Something like that (e.g. to unblock or change the pin on a card connected to some machine remote) could be nice for opensc users too. Regards, Andreas _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
