Menu
▾
▴
Re: [Opensc-devel] OpenSC at FOSDEM 2018
|
From: Douglas E E. <dee...@gm...> - 2018-01-06 17:09:16
|
On 1/6/2018 5:22 AM, NdK wrote: > Il 05/01/2018 19:17, Douglas E Engert ha scritto: > >> What card and what application/middleware are you using? > The most versatile card I have is the Aventra MyEID (that IIRC can store > up to 15 keys and 15 PINs). That's single-applet, so there shouldn't be > multi-applet-related problems. > OpenSC as middleware (IIUC). FF, TB, SSH and GPG as "clients". I do not have a myEID but When you say clients: FF, TB, SSH they all use PKCS#11 and if you use the OpenSC PKCS#11 for each and set disconnect = leave should help these work together. (See note below.) But if by GPG "client" you mean Gnu scdaemon that may request exclusive access via PCSC and thus lockout other applications. Google for: scdaemon exclusive to see some discussions on this including: https://github.com/OpenSC/OpenSC/issues/953 Note: that PCSC standards do define access by user, but this does not appear to be implemented. Thus a smart card used on one system may be accessible via processes of different users. Thus disconnect = reset and exclusive provide some protection against this as each process must provide the PIN to access the card. So disconnect = leave should be used only on a single user systems. > > BYtE, > Diego > > -- Douglas E. Engert <DEE...@gm...> |
