Stefan Kelm schrieb:
>
> Roland,
>
> > Actually, the private key stays on the smartcard. Data must be transfered to the
> > smartcard for signing. That is why smartcards would presumably slow down SSL.
>
> I can't see why storing the server's private key on a smartcard would slow
> down SSL. If I'm not completely mistaken the server's private key is not
> used for signing message but for the key exchange protocol that is not
> used that often.
SSL doesn'T require signing data, sure. But as you pointed out,
it requires the usage of the private key during key exchanges.
A typical smart card might be able to do 2 private key ops
per second. Even with the help of session caching this means
you can only serve with a reate of 2 clients per second. This
is not extremely much...
--
Holger Reif Tel.: +49 361 74707-0
SmartRing GmbH Fax.: +49 361 7470720
Europaplatz 5 [EMAIL PROTECTED]
D-99091 Erfurt WWW.SmartRing.de
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
