On 2/21/2012 1:51 AM, Anders Rundgren wrote: > On 2012-02-20 23:23, Jean-Michel Pouré - GOOZE wrote: > <snip> >> IMHO, CCID is superior as it is really plug-and-play under all systems. >> Of course, CCID is needed, but it could be installed under all systems >> by default. The last versions of libccid with udev really rocks. Pure >> plug-and-play never exists, you always need an underlying library. >> libccid is that library. > > Jean-Michel, > > I'm not following you here. CCID (as I understand it) only defines > an USB communication protocol/class, not how for example how to do > an RSA signature. When I look into my W7 installation I note that > when I attach my ePass2003 token to it, there is a driver from > "EnterSafe". That doesn't look particularly universal to me. > > In addition, in order to do something useful with the token I had to > install a specific ePass2003 management program. It worked great BTW! > > Don't get me wrong but from a *customer perspective* it would > have been much better if all this software was a part of a platform's > "smart card support". My guess is that the smart card industry can't > do that which is one of the motivations behind my SKS/KeyGen2 project. > > Upgrading ePass2003 to PIV is an intermediary step. I believe the > management part unfortunately is largely undefined in PIV but maybe > somebody else know better? Douglas?
That is correct. As I understand it, the intent was to let the card vendors define this for theirs cards and allow them to market card management systems, giving them some competitive advantage for their cards. At least the end user card interface would be the same. But 800-73 does define "put data" and "generate key", which allows for some testing. It does not define a load key or any finalize commands which would be needed by a production card management system. > > <snip> > > Cheers, > Anders > _______________________________________________ > opensc-devel mailing list > opensc-devel@lists.opensc-project.org > http://www.opensc-project.org/mailman/listinfo/opensc-devel > > -- Douglas E. Engert <deeng...@anl.gov> Argonne National Laboratory 9700 South Cass Avenue Argonne, Illinois 60439 (630) 252-5444 _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
