WG: [WINPT USERS] WinPT Smartcard Support

thomas schorpp t.schorpp@gmx.de
Thu Aug 21 18:06:02 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

hi allen,

"So to hack any info from the
smart device one would have to get the smart device password, then crack
the symmetric passphrase, then finally crack the secure key passphrase.
They would have to do this even before they have access to the encrypted
symmetric passphrase also on the smart card."

no, not necessary, there are successful attacks using electron microscope or
electronic current analysis with algorithm cryptanalysis to recover secret
data on cryptographic processors, and many side-channel attacks more. :)

the maxim i-button could be a reasonable way, but we need OPEN specs for a
openpgp smartcard project, i could not get any specs from infineon or maxim
at this time. THATS NOT THRUSTWORTHY.

Y
tom
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (MingW32) - WinPT 0.7.96

iEYEAREDAAYFAj9E6h4ACgkQzvbvBTHiGrpxbQCfa4cTyOJ/szSXsqsys/QMCZ7y
aQcAoJTAkI3LzprJ/AzOG8P9+MUZOXtP
=bdDK
-----END PGP SIGNATURE-----