I have a couple of thoughts about some of the worries about shutting
down after a fork().
First, the PKCS #11 spec is silent on this issue particularly, but it is
clear about one thing, you do need to be able to handle C_Initialize
after the fork. The quickest way to get there is to allow shut
On 11/26/2008 05:30 PM, Ian G:
Well, I don't see that. PGP and Skype both offer authenticated +
confidential messages, without the "certificate" side of things.
LOL, and how exactly? Or better, how can I validate that? Specially in
the case of skype, we don't even know where those keys reside,
Ian G wrote:
Michael Ströder wrote:
Ian G wrote:
Michael Ströder wrote:
Anders, that's not the real problem with S/MIME or PGP.
Encrypting/signing is simply not a business requirement.
...
=> Encrypting/signing must be made a business requirement in
contracts. That's the whole point. And th
Akkshayaa Venkatram wrote:
>> From the mozilla tree,
>> http://mxr.mozilla.org/mozilla/source/security/nss/lib/pk11wrap/pk11pub.h#109
>>
>>
>> I want to call the PK11 functions for encrypt, decrypt, sign, verify,
>> etc.. from my Firefox extension that is written in javascript.
Robert Relyea w
Michael Ströder wrote:
Ian G wrote:
Michael Ströder wrote:
Anders, that's not the real problem with S/MIME or PGP.
Encrypting/signing is simply not a business requirement.
...
=> Encrypting/signing must be made a business requirement in
contracts. That's the whole point. And there's no techn
I'll repeat my answer to your question in the opensc list. We should
probably keep followups in this list since there is more NSS/mozilla
expertise here (which is really where your questionis coming from)...
Akkshayaa Venkatram wrote:
Hello,
From the mozilla tree,
http://mxr.mozilla.org/moz
Anders Rundgren wrote:
Ian G wrote:
=> Encrypting/signing must be made a business requirement in contracts.
That's the whole point. And there's no technical solution for it.
That's as close to a perfect dilemma as I've come across! It's not a
business requirement, so we must make it a busin
Ian G wrote:
Michael Ströder wrote:
Anders, that's not the real problem with S/MIME or PGP.
Encrypting/signing is simply not a business requirement.
...
=> Encrypting/signing must be made a business requirement in
contracts. That's the whole point. And there's no technical solution
for it.
Ian G wrote:
PGP and Skype both offer authenticated +
confidential messages, without the "certificate" side of things. They
do it conceptually by tightly binding the keys to the user, and having
each user authenticate their handles directly to each other.
Well, there has to be a persistent s
Ian G wrote:
>> => Encrypting/signing must be made a business requirement in contracts.
>> That's the whole point. And there's no technical solution for it.
>That's as close to a perfect dilemma as I've come across! It's not a
>business requirement, so we must make it a business requirement ...
Anders Rundgren wrote:
I'm looking for a system that offers authenticated and confidential
messaging which would among things include mobile phone voice messaging.
If such system would require users to trust certificates and stuff, it will
fail.
Our current only alternative is the trusted prov
Michael Ströder wrote:
Anders, that's not the real problem with S/MIME or PGP.
Encrypting/signing is simply not a business requirement.
...
=> Encrypting/signing must be made a business requirement in contracts.
That's the whole point. And there's no technical solution for it.
That's as clos
On 11/26/2008 10:27 AM, Anders Rundgren:
I'm looking for a system that offers authenticated and confidential
messaging which would among things include mobile phone voice messaging.
You also might want to look into http://openid.net/
I expect OpenID to deployed as a form of authentication almos
Anders Rundgren wrote:
I think we are looking for different things.
I'm looking for a system that offers authenticated and confidential
messaging which would among things include mobile phone voice messaging.
But it's the very same problem.
If such system would require users to trust certifi
Hello,
From the mozilla tree,
http://mxr.mozilla.org/mozilla/source/security/nss/lib/pk11wrap/pk11pub.h#109
I want to call the PK11 functions for encrypt, decrypt, sign, verify,
etc.. from my Firefox extension that is written in javascript.
Eg:
SECKEYPrivateKey *PK11_GenerateKeyPair(PK11Sl
Michael,
I think we are looking for different things.
I'm looking for a system that offers authenticated and confidential
messaging which would among things include mobile phone voice messaging.
If such system would require users to trust certificates and stuff, it will
fail.
Our current only a
16 matches
Mail list logo
