Re: window.crypto functions
Nelson Bolyard wrote: Robert Relyea wrote, On 2008-02-19 14:20: Eddy Nigg (StartCom Ltd.) wrote: Does anybody know if and which parameters might be obtained by the window.crypto functions and smart cards? For reference see this page: http://developer.mozilla.org/en/docs/JavaScript_crypto#Handling_Smart_Card_Events Specifically I'd like to know if there is a function to check if a smart card was already inserted before accessing a certain page. Is it possible to obtain a smart card ID or other properties of the smart card device (as loaded by NSS)? No, the API does not give you direct information about how many or which tokens are installed. Bob, doesn't the command modutil -list produce the info Eddy wants? If so, then I'd say the API DOES provide that information, because modutil uses the API... There are lots of APIs to get lots of data about smart cards, but just like there are lots of APIs to do crypto, the aren't all available to web designers through java script. From a C program, or a plugin, it's pretty easy to know what Smart cards are currently inserted (actually what tokens in general are inserted...). /Nelson ___ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto smime.p7s Description: S/MIME Cryptographic Signature ___ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
Re: window.crypto functions
Robert Relyea wrote: There are lots of APIs to get lots of data about smart cards, but just like there are lots of APIs to do crypto, the aren't all available to web designers through java script. Oh, it works excellent with Javascript in Firefox (and most derivatives I guess). Subrata sent me a basic script example which saved me a lot of time. The only annoyance is that /signed.applets.codebase_principal_support/ in the config must be set to true manually. Because of that I'm exploring nevertheless if a mozilla specific Javascript function can be introduced which would give some basic info about the security devices and their state(s). -- Regards Signer: Eddy Nigg, StartCom Ltd. http://www.startcom.org Jabber: [EMAIL PROTECTED] xmpp:[EMAIL PROTECTED] Blog: Join the Revolution! http://blog.startcom.org Phone: +1.213.341.0390 ___ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
Re: window.crypto functions
Hi Bob, Robert Relyea wrote: I think you need to be running a chrome to access this function however;(. I don't think your average website can use it. If Firefox is considered an average and common browser than it's pretty usable. For MSIE we've got activeX (so I'm not the MS guy, don't ask me too much about it), and XUL and activeX seem to be able to achieve more or less the same in that respect, i.e. check for hardware tokens, force to insert a hardware token, create the key in the token, check for its serial (for later referencing), login/logout functions on insert and removal etc. etc. Anyway, thanks for all the suggestions and help! -- Regards Signer: Eddy Nigg, StartCom Ltd. http://www.startcom.org Jabber: [EMAIL PROTECTED] xmpp:[EMAIL PROTECTED] Blog: Join the Revolution! http://blog.startcom.org Phone: +1.213.341.0390 ___ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
Re: window.crypto functions
Eddy Nigg (StartCom Ltd.) wrote: Does anybody know if and which parameters might be obtained by the window.crypto functions and smart cards? For reference see this page: http://developer.mozilla.org/en/docs/JavaScript_crypto#Handling_Smart_Card_Events Specifically I'd like to know if there is a function to check if a smart card was already inserted before accessing a certain page. Is it possible to obtain a smart card ID or other properties of the smart card device (as loaded by NSS)? No, the API does not give you direct information about how many or which tokens are installed. Typically that information is gleened by doing a 'request/not require' client auth. The certificate would indicate the presence of the correct smart card (this presumes the server and the card issuer are related). bob smime.p7s Description: S/MIME Cryptographic Signature ___ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
Re: window.crypto functions
Eddy, I think that you can do it. Have you looked into nsIPK11Token interface (http://lxr.mozilla.org/mozilla1.8.0/source/security/manager/ssl/public/nsIPK11Token.idl) ? The nsIPK11Token interface would allow you to filter tokens based on a number of attributes and eventually you can determine the desired token is present. -- Subrata Eddy Nigg (StartCom Ltd.) wrote: Does anybody know if and which parameters might be obtained by the window.crypto functions and smart cards? For reference see this page: http://developer.mozilla.org/en/docs/JavaScript_crypto#Handling_Smart_Card_Events Specifically I'd like to know if there is a function to check if a smart card was already inserted before accessing a certain page. Is it possible to obtain a smart card ID or other properties of the smart card device (as loaded by NSS)? ___ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
Re: window.crypto functions
Robert Relyea wrote, On 2008-02-19 14:20: Eddy Nigg (StartCom Ltd.) wrote: Does anybody know if and which parameters might be obtained by the window.crypto functions and smart cards? For reference see this page: http://developer.mozilla.org/en/docs/JavaScript_crypto#Handling_Smart_Card_Events Specifically I'd like to know if there is a function to check if a smart card was already inserted before accessing a certain page. Is it possible to obtain a smart card ID or other properties of the smart card device (as loaded by NSS)? No, the API does not give you direct information about how many or which tokens are installed. Bob, doesn't the command modutil -list produce the info Eddy wants? If so, then I'd say the API DOES provide that information, because modutil uses the API... /Nelson ___ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto