Hello Jean-Michel, are these cards native cards with file system and PKCS#15 data structures or are they emulated? Nevertheless, in both cases an access control rule DELETE := NEVER would be more helpful. But I have to investigate if OpenSC supports this.
Regards Andre On Thu, 2010-11-04 at 19:05 +0100, Jean-Michel Pouré - GOOZE wrote: > Le jeudi 04 novembre 2010 à 18:37 +0100, Nikos Mavrogiannopoulos a > écrit : > > I'm trying to destroy an object I created on a Feitian PKI smart card > > using pkcs11 calls. My result is CKR_GENERAL_ERROR. I can reproduce it > > using the pkcs11-tool: > > On the Feitian PKI and most smartcards, objects cannot be deleted, per > spec. This is a security feature, to make sure objects are not replaced > by attackers. The same applies for RSA keys. > > The only way to replace objects/certs is to initialize the card and copy > them to card. _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
