WebApp Sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Smart card proposal

From: Koh Gim Leng <kohgimleng () gmail com>
Date: Fri, 28 Jan 2005 11:10:30 +0800
On Tue, 25 Jan 2005 16:45:52 -0500, Richard M. Smith
<rms () computerbytesman com> wrote:

Hi,

What seems more user-friendly to me is that a single USB key device needs to
be sharable between 5 credit cards, rather than having 5 separate devices.

What I still do not understand is how a Web site communicates with the USB
key device.


Web site communicates to a web browser which in term communicates to a
set of standard APIs known as PKCS#11. Every smart card token or USB
token vendor who wants to sell their token will provide you with their
PKCS#11. Being a standard, your browser will know which API to call
within the PKCS#11.

If the token is in the form smart card, then the PKCS#11 provided by
the smart card vendor will include means to call the smart card
drivers provided as well. If the token is in the form of USB, then the
PKCS#11 provided by the USB vendor will inculdes means to call the USB
drivers as well. Bottom line - whatever happens belows PKCS#1l should
be transparent to the web browser (or any PKI enabled application).

Regards
Sam Koh
Previous By Date Next
Previous By Thread Next

Current thread: