Hello!
When using a token (Estonian eID card) via OpenSC PKCS#11 module with
FF 1.5 / TB 1.5 it selects a wrong certificate automatically - if you
don't select 'ask every time' for certificate selection then the
nonrepudiation slot is used instead of the authentication slot. This
was not the case with 1.0.x
This is a somewhat blocking and also annoying bug as with automatic
certificate selection things will not work and even if the user
switches on certificate selection dialogue FF suggests the wrong cert.
Certificates:
Authentication - http://martin.paljak.pri.ee/download/mozilla-nonrep/
auth.cert.txt
Signature - http://martin.paljak.pri.ee/download/mozilla-nonrep/
sig.cert.txt
Screenshot - http://martin.paljak.pri.ee/download/mozilla-nonrep/
screenshot.png
About the web based digital signature thread - that's even not so
important. There are other cross-platform and cross-browser means for
getting digital signatures (activex, java, upi) via the preferred
itnerface (cryptoapi, cdsa, pkcs#11)
--
Martin Paljak
[EMAIL PROTECTED]
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
