PKCS11: selecting which key to use
Peter Stuge
peter at stuge.se
Fri Feb 18 23:02:08 EST 2011
Hi,
NdK wrote:
> >>> For lack of better alternatives I guess PKCS#11 URI may be the
> >>> way to go.
..
> Didn't know about it. Seems the correct way to follow.
> And hope that apps start following it, too (expecially mozilla ones).
Aris Adamantiadis wrote:
> this seems perfect to me, on the condition that PKCS#11 URL are easy
> to obtain.
Well, personally I hope we can do better, using the config and
refcounting layer that Stef introduced also in the FOSDEM devroom.
More about that in a little bit. :)
> Being able to set a PKCS#11 URL inside a .ssh/config file seem very
> important to me.
At least to specify a cert+key id, yes.
> The specifications are to be found in here :
> http://tools.ietf.org/html/draft-pechanec-pkcs11uri-03
Thanks!
//Peter
More information about the openssh-unix-dev
mailing list