LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

PKCS#11 and GnuPG

PKCS#11 and GnuPG

Posted Aug 11, 2011 15:34 UTC (Thu) by shpedoikal (subscriber, #33369)
In reply to: PKCS#11 and GnuPG by dd9jn
Parent article: Desktop Summit: Crypto consolidation

Free or proprietary PKCS#11 implementations can be used without modifying an the application. I'd consider that supporting evidence that PKCS#11 is in fact well defined and I'd consider that a strength (WRT proprietary tokens) as opposed to a weakness.

(Log in to post comments)

PKCS#11 and GnuPG

Posted Aug 11, 2011 16:35 UTC (Thu) by dd9jn (subscriber, #4459) [Link]

Indeed some very basic operations are now working more or less flawless. But again, very basic standard operations only. If you want to do something more complicated which might even be asking for a special PIN or presenting more information it turns out to be a problem. Vendors then stretch the interpretation of PKCS#11 or fall back to the proprietary pkcs#11 extensions those who have been the cause for all the problems in the past.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds