LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

PKCS#11 and GnuPG

PKCS#11 and GnuPG

Posted Aug 11, 2011 17:13 UTC (Thu) by dd9jn (subscriber, #4459)
In reply to: PKCS#11 and GnuPG by stefw
Parent article: Desktop Summit: Crypto consolidation

AFAIR, RedHat pushed for NSS because it has a FIPS certification and thus would make it easy to get RHEL FIPS certified. I don't know whether this is still the plan; I heard that they now plan to move all crypto into the Linux kernel to satisfy newer FIPS requirements.

Crypto usability is more important than discussions on whether SHA-1 or SHA-256 is appropriate. Actually everything should work without any user interactions. We are far away from such a goal.

For what do you really need PKCS#11? Shall we discuss this on a ML and see whether we can do something about it?

(Log in to post comments)

PKCS#11 and GnuPG

Posted Aug 11, 2011 19:06 UTC (Thu) by stefw (guest, #75025) [Link]

Yes, a great place to discuss it would be p11-glue@lists.freedesktop.org

http://lists.freedesktop.org/mailman/listinfo/p11-glue

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds