[opensc-user] Verisign Secure Storage Token and OpenSC

classic Classic list List threaded Threaded
4 messages Options
Reply | Threaded
Open this post in threaded view
|

[opensc-user] Verisign Secure Storage Token and OpenSC

Jan Schermer
Hi,
thanks for the feedback on iKey replacement :) I'm still looking into it
and found this:

http://www.verisign.com/products-services/security-services/unified-authentication/usb-tokens/index.html
(Verisign Secure Storage Token)

looks very nice (assuming you authenticate yourself with PIN for secure
storage encrypted with your public key - I assume it should work this
way), also has OTP calculator and all the nice goodies I'd love

however, is this token compatible with OpenSC? It's listed in pcsclite
debian package as "supposedly" supported but untested.

Thank you

--
Jan Schermer
Freelance UNIX Specialist

GSM: +420-608022225
email: [hidden email]
ICQ: 19466257
WWW: http://www.zviratko.net

-------------------------------------------------------------------------
AVIZO PRI KONFIDENCECO: Cxi tiu mesagxo kaj iu ajn kunfiksajxoj plejeble
estis dissendita klartekste tra la Interreto, sed povas ankoraux enhavi
konfidencan informon.  Se vi ne estas la celanto, oni ne povas halti vin
kopii, plusendi, aux uzi iun ajn parton de la mesagxo aux gxiaj
kunfiksajxoj. Interretajn komunikajxojn oni ne povas garantii sekuritan
aux seneraran, cxar informon oni povas kapti, korupti, perdi, malfruigi,
aux enhavigi virusojn.  La sendanto tial deklaras, ke cxiu tiaj avizoj
pri konfidenceco estas lamaj lauxnature kaj nur malsxparas bendlargxon.
Uzu kriptografion aux esperanton se vi bezonas konfidencecon :)
-------------------------------------------------------------------------
Cxi tiu retposxtajxo enhavas virusojn kaj eksplodigos vian komputilon.


_______________________________________________
opensc-user mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-user

smime.p7s (3K) Download Attachment
Reply | Threaded
Open this post in threaded view
|

Re: Verisign Secure Storage Token and OpenSC

Peter Stuge
On Fri, Jul 08, 2005 at 11:14:52AM +0200, Jan Schermer wrote:
> AVIZO PRI KONFIDENCECO: ...

I don't know what language this is, but I'm gussing it says something
resemling "confidential" - please do not send confidential material
to public mailing lists. It will not help anyone, and people may
instead be reluctant to help you.


//Peter
_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: Verisign Secure Storage Token and OpenSC

Nils Larsch
In reply to this post by Jan Schermer
Jan Schermer wrote:

> Hi,
> thanks for the feedback on iKey replacement :) I'm still looking into it
> and found this:
>
> http://www.verisign.com/products-services/security-services/unified-authentication/usb-tokens/index.html
> (Verisign Secure Storage Token)
>
> looks very nice (assuming you authenticate yourself with PIN for secure
> storage encrypted with your public key - I assume it should work this
> way), also has OTP calculator and all the nice goodies I'd love
>
> however, is this token compatible with OpenSC?

almost certainly not (it of course depends on the smartcard os used)

> It's listed in pcsclite
> debian package as "supposedly" supported but untested.

pcsc-lite offers an api to talk to the token but it's useless (from
a opensc point of view) if we don't what to 'say' to the device in
order to get things done.

Nils

PS: one mailing list is enough
_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: Verisign Secure Storage Token and OpenSC [u]

Andreas Jellinghaus-2
In reply to this post by Jan Schermer
please respect netiquette. do not post with such long and useless footers.

On Friday 08 July 2005 11:14, Jan Schermer wrote:
> thanks for the feedback on iKey replacement :) I'm still looking into it
> and found this:
[verisign]

they look exactly like aladdin etoken pro / ng-otp, except with
verisign branding, so I guess they are exactly that.

aladdin etoken pro is semi supported (i.e. the aladdin software is
incompatible with opensc, but if you initialize a blank token with
opensc and only use it with opensc, you are fine).

the new ng / otp token is not supported. Noone wrote a driver so far,
I don't have one, and I don't have any log files how it works with
windows. My guess is: it will be nearly idendical to etoken pro and
thus writing a driver will be easy. but I could be wrong as well.

> however, is this token compatible with OpenSC? It's listed in pcsclite
> debian package as "supposedly" supported but untested.

url?

btw: those tokens are 1024 bit only? why buy 1024bit/32k generation
when you can have the newer 2048bit generation? usualy the newer
generation is a lot faster, even with twice the key size.
but since I don't have such a token, I can't time it either.

Regards, Andreas
_______________________________________________
opensc-devel mailing list
[hidden email]
http://www.opensc.org/cgi-bin/mailman/listinfo/opensc-devel