On Mar 31, 2008, at 9:49 AM, Douglas E. Engert wrote:
PIV is really an application on a card, and there are currently 4 NIST approved cards. 800-73 defines the application that needs to be stanadardized for end user use.
I've heard that there's at least one card provider that's going to implement 800-73 in hardware, but I've never been able to confirm it.
Would be cool if it were true.
The goal was to support the normal use of the NIST standard, for platforms that use Open Source. Not to develop a card administration station for specific cards. This would allow Unix systems to use government issued cards with PKCS11 for login, browser and mail.
Nevertheless, the ability would be useful. For example, some companies may want to use PIV-compliant middleware but don't want to implement everything FIPS 201 requires. This is of interest to contractors where a not-insignificant proportion of employees will hold a PIV as well as a corporate smartcard.
-- Tim
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
