OpenSC smartcard access should use raw public keys, not X.509 certificates

Peter Stuge stuge-openssh-unix-dev at
Sat Aug 2 07:18:11 EST 2008

On Fri, Aug 01, 2008 at 06:16:01PM +0300, Alon Bar-Lev wrote:
> >  how do you propose for OpenSSH to be able to make use of both keys?
> Oh... you truly got a problem.... I understand why you discuss this
> now... I would recommend choosing a different smartcard.

The problem is that this is a reality even for Cryptoflex eGate
users. Since it used to be the gold standard OpenSC card I would
appreciate a good solution for it. Granted, it has been unavailable
for a while, but I expect many to still have them in use.


More information about the openssh-unix-dev mailing list