On 08/19/99, Salz, Rich said:
>>Maybe a better way of stating my intent would've been to say
>>that I'd like to
>>provide the cross platform interface to make a PKCS#11
>>interface easier.
>
>sigh. Does the world really need another token interface?
>(As opposed to PC/SC, PKCS11, CDSA, etc.)
I'm not proposing another token interface -- did you read
what I wrote -- an interface to make a PKCS#11 interface
easier for OpenSSL.
>>Although there are some things in PKCS#11 that I strongly
>>disagree with, like pg. 111 of the 2.1 PKCS #11 draft:
>
>I don't think you understand the excerpt that you quoted.
>It doesn't prevent threads -- and in fact the current PKCS11
>is multi-threaded, isn't it? -- it just says that every
>function is atomic. In other words, the card won't be left
>in an inconsistent state. That's very important and very
>useful.
Again -- did you read what I wrote -- I don't like the fact
that you have to use threads and that operations can only
be performed in a blocking fashion. Doing some totally
prevents someone from using a pure async model.
--Chris
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
