Hi Peter, On Thu, Oct 27, 2011 at 10:45 AM, Peter Gutmann <pgut...@cs.auckland.ac.nz> wrote: > Alfonso De Gregorio <a...@crypto.lo.gy> writes: > >>For a past project, I've been engineering a cryptographic appliance running >>with Bull TrustWay CC2000 >>http://support.bull.com/ols/product/security/trustway/c2000/cc2000.html >>It is a full-length PCI with on-board key storage. > > Can you provide a bit more information on this thing? Your post actually > contains at least as much data on it as Bull's web page. From the little info > that's available, it's just another PCI crypto card, and if it's from Bull > it's probably going to cost an arm and a leg. > > Peter.
Absolutely. The documentation was always rather scarce. I first heard about that card talking with the Trustway head of unit, when we were both in Brussels serving the European Commission as evaluators of some research projects. The appliances I was involved in were SSCDs (Secure Signature Creation Device) designed in the context of EU Directive for Electronic Signatures. The cryptographic card by Bull Evidian is designed according to two protection profiles relevant for this application scenario, the CEN CWA 14167-2 and CEN CWA 14167-3, and certified CC EAL4 -- online there is the security target of a new revision of the same card http://www.ssi.gouv.fr/IMG/certificat/ANSSI-CC-cible_2010-10en.pdf The CC2000 was provided with a Linux device driver and a PKCS#11 engine for OpenSSL. If the project was to be supported by my personal financial resources I would ended up injuring both an arm and a leg... But in the end I managed to negotiate contract terms well suited with the requirements/constraints of a small enterprise, saving my arms! Cheers, -- alfonso blogs at http://Plaintext.crypto.lo.gy tweets @secYOUre _______________________________________________ cryptography mailing list cryptography@randombit.net http://lists.randombit.net/mailman/listinfo/cryptography
