On 2012-08-15 18:53, Price, Bill wrote: > Although the details are sketchy, it appears that the scheme can be used with > other OS's and PKIs. Intel appears to have provided hooks. There's > apparently an MS CAPI visible provider for the hardware/firmware module. Any > plans to provide an NSS/PKCS 11 interface for Linux, MAC, Windows operating > systems?
A private message from an Intel employee indicates that not even under Windows you cannot use any CA without "arrangements" with Intel. Using NSS/PKCS #11 seems even more distant since its inferior browser "companion", <keygen> doesn't support PIN-codes, client-key agility, issuer conformation, etc. Anders > > -----Original Message----- > From: dev-tech-crypto-bounces+wprice=mitre....@lists.mozilla.org > [mailto:dev-tech-crypto-bounces+wprice=mitre....@lists.mozilla.org] On Behalf > Of Anders Rundgren > Sent: Tuesday, August 14, 2012 11:41 PM > To: mozilla's crypto code discussion list > Subject: Update on Intel's Identity Protection Technology > > http://communities.intel.com/community/vproexpert/blog/2012/05/18/intel-ipt-with-embedded-pki-and-protected-transaction-display > > Apparently your next PC already has it. > > What's missing is a provisioning facility for unleashing the power of this > scheme so that it isn't limited to one OS, one CA (?), and Enterprises. > > Anders > > -- > dev-tech-crypto mailing list > dev-tech-crypto@lists.mozilla.org > https://lists.mozilla.org/listinfo/dev-tech-crypto > -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
