Andreas Jellinghaus wrote: > Am Montag 19 April 2010 16:57:35 schrieb Jan Just Keijser: > > Note: there is no absolutely secure method to establish a connection > > between a card on a remote machine and the CA . Period. > > I think that is wrong. some smart card protocols work like that: > step 1: ask card for some serial number (or given number) > step 2: start encrypted communication using a key known to you and > stored on the card when it was initialised.
This is the idea for Swedish national ID with eID card NIDEL AFAIU. There's a special key on the card, with PIN issued on paper, for when the card phones home. //Peter _______________________________________________ opensc-devel mailing list [email protected] http://www.opensc-project.org/mailman/listinfo/opensc-devel
