Is it posible to sign with external PKCS11 token such [as] smartcards through
JSS? In all JSS examples I can see that a private key must be passed in to
initialize the signature object,
WHOA. Where do you see that? Please cite URLs. (Sorry, I'm not too familiar with the JSS examples.)
NSS (around which JSS is a wrapper) is very much dedicated to the idea that application software should never need to directly handle the private key bits. If JSS examples violate that premise, then I'm not happy with them.
> but for a smartcard it is imposible to get
the private key out off the card, it must be signed oncard.
Absolutely right, as it should be.
I can find an NSS example SecClab(http://secclab.mozdev.org/index.html), that can sign with smartcard, but I need to do it in Java, any help is appreciated.
I'll poke around here.
