On 2012-04-09 10:27, helpcrypto helpcrypto wrote: > So, IIUC, both of you consider using system/os/platform keystore > (directly [or hooked]) the "best" option?
IMHO it depends quite a bit on what your target audience is. If you (for example) are working with server-applications you are likely to either use .NET or Java. For .NET the Windows keystore is by far the easiest to use. For Java the situation is a little bit less clear but most people probably use the Java system unless they use HSMs which typically are supported by PKCS #11 which can be used from java but unfortunately not on Windows 64-bit. For client-based solutions, I definitely think that the native platform keystore should be used if possible. For 1-2% using Desktop *NIX the options are plentiful which for some people is considered an advantage but I consider difficult. Anders -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
