[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Help-gnutls] Gnutls Smartcard support?
From: |
Daniel Kahn Gillmor |
Subject: |
Re: [Help-gnutls] Gnutls Smartcard support? |
Date: |
Thu, 05 Mar 2009 11:14:07 -0500 |
User-agent: |
Mozilla-Thunderbird 2.0.0.19 (X11/20090103) |
On 03/05/2009 11:01 AM, Jonathan Manktelow wrote:
> Hi, Is there any support for using certificates on smartcards with Gnutls?
No, there does not appear to be. I think it could be very useful to
support private keys from smartcards in GnuTLS, but it would perhaps be
even more useful to have generic out-of-process private key handling
(like ssh-agent from OpenSSH does) so that developers could implement a
smartcard-capable private key backend directly as a plugin.
This is a counterpoint to the idea of an external certificate validation
agent, which was at one point fleshed out here:
http://redmine.josefsson.org/wiki/gnutls/GnuTLSExternalValidation
but that page seems to currently give a 404 error (Simon, the whole
redmine instance seems to be gone -- is this something you already know
about?)
Jonathan, do you have a specific smartcard that you would like to support?
--dkg
signature.asc
Description: OpenPGP digital signature