xca / Feature Requests / #74 Support ECC also on smart cards

#74 Support ECC also on smart cards

Milestone: Next_Release_(example)

Status: closed

Owner: nobody

Labels: None

Priority: 5

Updated: 2014-11-22

Created: 2014-02-13

Creator: David von Oheimb

Private: No

So far, smart card support is available for RSA, but not for Elliptic curves.
Yet meanwhile there are smart cards that (more or less) offer support for ECC.
Would be nice if XCA allowed for using these features of hardware security tokens.

Unfortunately, this requires supporting further PKCS#11 operations like CKM_EC_KEY_PAIR_GEN in lib/pkcs11.cpp . As far as time allows, I might help doing so.

Discussion

Christian Hohnstaedt - 2014-11-22

status: open --> closed
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Christian Hohnstaedt - 2014-11-22

commit 3e14fdbf663cda33dee01c281af22bb7adf203cd
Author: Christian Hohnstaedt chohnstaedt@innominate.com
Date: Sun Nov 2 10:32:08 2014 +0100

Implement storing EC Keys on a token I don't have the hardware to test this...

(I tested it later with the OpenDNSSEC SoftHSMv2)

commit 8ed9bab7df59d79db5c151ee20bc47bbdf41b9ac
Author: Christian Hohnstaedt chohnstaedt@innominate.com
Date: Thu Oct 30 16:09:04 2014 +0100

Support EC key generation on PKCS#11 token move EC builtin sources into extra class and file

commit ad93cebf5c9303efe81b1adcfff1bb29e21d1dc1
Author: Christian Hohnstaedt chohnstaedt@innominate.com
Date: Sat Oct 25 13:48:19 2014 +0200

PKCS#11: Make EC and RSA signatures work with ENGINE

commit baa45e7f6212bb614ccb21a6b6b9d33a4a3f1382
Author: Christian Hohnstaedt chohnstaedt@innominate.com
Date: Sat Oct 25 13:48:45 2014 +0200

PKCS#11: Fix reading EC keys from card
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Support ECC also on smart cards

Group

Searches

Help

#74 Support ECC also on smart cards

Discussion