On Tue, 19 Dec 2000, Richard Levitte - VMS Whacker wrote:
> From: James Dabbs <[EMAIL PROTECTED]>
>
> JDabbs> Does OpenSSL presently support hardware tokens for client-side
> JDabbs> authentication, such as Aladdin "eToken" or Rainbow "iKey
> JDabbs> 2000"? If not, is there any activity in this direction?
>
> I've been thinking about it. What's needed is the following:
>
> - a .so/.dll to use as an interface to the token
> - programming documentation
>
> However, it may be that they all support PKCS#11, so perhaps it would
> be a good thing to build a PKCS#11 engine...
Writing a PKCS#11 handler isn't enough. I use several PKCS#11 compliant
tokens, and I often need to write some extra code to be able to use
them. There's 2 versions of the PKCS#11, and even 2 sub-versions of
PKCS#11v1. Each token can have it's own set of extra functions, object
attributes, limitations, ...
--
Erwann ABALEA
[EMAIL PROTECTED]
RSA PGP Key ID: 0x2D0EABD5
------
Common sense isn't.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
