Jean-Michel, On Feb 8, 2011, at 11:17 AM, Jean-Michel Pouré - GOOZE wrote: > Le mardi 08 février 2011 à 09:08 +0100, Ludovic Rousseau a écrit : >> It is _expected_ to have a _highly_ variable time for prime number >> generators. > > This is understood now. So please let us remove key generation time on > the wiki for all cards. This is kind of spam to me to let users believe > that some card can do fast and the Feitian PKI is slow.
As said by Ludovic, the wiki tries to be informative. And unbiased. I've written things to the wiki that can easily make somebody believe that the one (some, all) of the Estonian eID cards is a buggy piece of crap. Which it might as well be, depending on how one sees it. Or one could say that the Estonian eID card is instead very well tested, as the number of documented bugs and curiosities is bigger and better than undocumented and yet unknown curiosities [1] of other cards. Yet those "known issues" can independently and objectively be observed as facts. No security through obscurity and no biased copywriting. > I am quite surprised that people modified the Feitian PKI page and added > 2m38s and other cards have very low time. Some users might believe: Hey > this other card is fast. My timings were in the range of 1 minute. > > This is all what I am asking for: equal treatment. I took three cards and wrote down the "time pkcs15-init -G rsa/X" output. The selection happened to be quite fair and varying: a common JavaCard solution [2], a custom crypto token with "exotic algorithm" (GOST) support in addition to RSA [3] and a Feitian card [4]. Generation of RSA 1024 and 2048 keys was tested equally on all three cards/tokens. Onboard 2048 RSA generation on RutokenECP still takes "forever" so yeah, some users might believe "hell this Feitian card is fast (when compared to RutokenECP)". That should count as equal treatment, at least to demonstrate that there's no intentional conspiracy against "some users" whom you'd like to impress. Stop complaining. Or offer a solution to do "serious performance testing of smart cards" I've said before that I'm independent and have no contractual relations with commercial hardware or software vendors, nor do I promote any specific technologies for direct financial gain (except JavaCards, which I support as a platform because of open source considerations and because JavaCard is the only usable vendor neutral card software platform at the moment.). Which is not equally true about you, as you represent a company who re-sells products from a specific vendor for financial gain. And naturally you'd like it to be "well perceived" wherever possible. I'm not against pitching your product(s) in OpenSC wiki, either on a product (card) page or on CommercialOffers, but that should be technically sound information, not in the form of a TV shop offer or by converting the the page to a SEO link farm full of copywriting (spam). Yes, I do have personal preferences but I hope they don't dominate my overall judgement. Yes, to keep OpenSC wiki a useful and informative resource, I've edited it to remove copywriting about Feitian card [5] as well as unverifiable facts like "The card is extremely secure and has a wide customer base" about MyEID [6], without thinking for too long if the author of such claims gets surprised by the removal or what "some users" might start to believe after that. And I'll continue to remove BS marketing, without taking the vendor or author into account [7]. Cheers, Martin [1] http://www.opensc-project.org/opensc/wiki/EstonianEid#Knownissuesandincompatibilities [2] http://www.opensc-project.org/opensc/wiki/MyEID?action=diff&version=12&old_version=11 [3] http://www.opensc-project.org/opensc/wiki/AktivRutokenECP?action=diff&version=4&old_version=3 [4] http://www.opensc-project.org/opensc/wiki/FTCOSPK01C?action=diff&version=21&old_version=20 [5] http://www.opensc-project.org/opensc/wiki/FTCOSPK01C?action=diff&version=22&old_version=21 [6] http://www.opensc-project.org/opensc/wiki/MyEID?action=diff&version=16 [7] http://www.opensc-project.org/opensc/wiki/DevelopmentPolicy#Wiki -- @MartinPaljak.net +3725156495 _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
