On Wed, Jan 26, 2011 at 12:00 PM, Anders Rundgren <anders.rundg...@telia.com> wrote:
> External tokens on mobile phones is a difficult idea that most likely > will be marginalized by on-line schemes using embedded crypto hardware. > If there was this "One Provider" things could be OK, but it is really > the opposite, and it is also getting worse. > Unlike the external tokens that haven't a reasonable enrollment > system in spite of being on the market for decades, the embedded > solutions will be enrollable through the mobile browser. You just > have to forget NSS and PKCS #11 because they don't support on-line > enrollment of the kind that can be used by "mere mortals", and at a > security level banks could accept. I don't understand what you mean by a reasonable enrollment system, however having seen the EMV protocol, I believe that the available PKCS #11 compatible smart-cards have a much higher security level than EMV bank cards. It seems the only criteria for banks evaluating protocols and technologies is their complexity. regards, Nikos _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
