On Sep 1, 2010, at 1:28 PM, Jean-Michel Pouré - GOOZE wrote: Hello, > On Wed, 2010-09-01 at 11:12 +0200, Patrik Martinsson wrote: >> 2. Support by gdm/screensaver/or any application actually that uses >> pkcs11, to handle locked cards. (I think if the card is locked you >> should get the possibility to unlock it with your puk, I don't know >> why >> this is not possible today ? ) > > Locking gdm screen is possible.
GDM/screensaver handling locked cards (with a blocked PIN code) by supporting unlocking them with a PUK code is not the same as locking gdm screen when a card is removed. >> 3. Support for NM to handle pkcs11 tokens when authenticating to 802x >> wireless networks. > I am not aware of a solution which would keep your WEP keys directly on > smartcard. Why mix WEP (a totally broken crypto system) with smart cards (still pretty good protection for good crypto keys, if properly implemented) ?? There is EAP-TLS purely on a smart card prototype [1]. Smart card authentication usually means using the keys on the card, not storing plaintext keys to the card. [1] http://perso.telecom-paristech.fr/~urien/openeapsmartcard/ -- Martin Paljak @martinpaljak.net +3725156495 _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
