Hi, I am developing applications on a protected module architecture for my thesis. In a protected module architecture, security sensitive code from applications are extracted into separate protected modules. These modules are then executed in isolation of the rest of the system (using o.a. hardware virtualization). The rest of the application then communicates with these modules through a specific mechanism. I would like to try to protect the encryption and decryption parts of kwallet to ensure that the passwords are maintained in a protected module. In this way the keys can never leave the module (this is ensured by the protected module architecture).
I have been looking through a lot of source code, o.a. kwallet manager and kwallet.c from kdeui. I can't seem to find the code where: -the actual wallet entries are encrypted and stored to disk (or decrypted) -the master password of the wallet is retrieved and checked It seems that these parts are somewhere hidden deep inside KDE. How does kwallet achieve these task? Can anyone point me to the exact location of these parts of KDE? Gijs
>> Visit http://mail.kde.org/mailman/listinfo/kde-devel#unsub to unsubscribe <<
