Re: The Browser Digital Signature Riddle

2006-01-23 Thread Anders Rundgren
Hi Nelson, Thank you very much for your insightful comments and information! Regards Anders - Original Message - From: "Nelson B" <[EMAIL PROTECTED]> Newsgroups: mozilla.dev.tech.crypto To: Sent: Monday, January 23, 2006 23:35 Subject: Re: The Browser Digital Signature Riddle Anders Ru

Re: The Browser Digital Signature Riddle

2006-01-23 Thread Nelson B
Anders Rundgren wrote: > The problem is though not solved by contributing to NSS or similar. > What is needed is no less than a standardization effort. Agreed. > But I have yet to see *ANY* interest among browser vendors in > cooperating in such a venture. Has anyone asked the browser vendors i

Re: Basic Firefox signing/encryption question

2006-01-23 Thread Nelson B
Anders Rundgren wrote: > An OASIS TC is currently toying with the idea that Mozilla Firefox can, > without adding any native extension code, perform XML Signatures and > possibly also XML Encryption, by an invocation from a web page: > > http://www.oasis-open.org/committees/download.php/16304/ags

Re: The Browser Digital Signature Riddle

2006-01-23 Thread Anders Rundgren
You are right Nelson. The problem is though not solved by contributing to NSS or similar. What is needed is no less than a standardization effort. But I have yet to see *ANY* interest among browser vendors in cooperating in such a venture. The non-existent documentation on Mozilla's "signText()"

Re: The Browser Digital Signature Riddle

2006-01-23 Thread Nelson B
Anders Rundgren wrote: > Recently a number of leading pharmaceutical companies who have > formed a strong authentication consortium (SAFE), launched an internally > developed standard known as USSI (Universal SAFE Signing Interface). > > But similar WebSigning "standards" have also been launched

Re: PKCS#11 module and FireFox password promting

2006-01-23 Thread Bob Relyea
If the SSL site is not requesting client auth, then the prompts for your token pin during SSL may have to do with how the token was installed. If the token was installed as 'the default RSA device', then NSS assumes the token is a hardware accelerator and will try to use the token to verify RSA

PKCS#11 module and FireFox password promting

2006-01-23 Thread Mark Hobbs
I am currently using FireFox V1.5 (Windows XP) and use a smartcard based DigitalID (private key and X509 cert) via a commercial PKCS#11 DLL marketed under the SafeSign name. My question concerns the frequency I am prompted for my smartcard password. It appears that when FireFox tries to perform so