OpenPGP Card

Alon Bar-Lev alon.barlev at
Mon Sep 5 18:38:20 CEST 2005


>That's correct, it was my proposal in question. The problem is that, under
Linux, I couldn't find a smart-card + PKCS#11
> combination that works correctly enough (out of the box) to be usable with

I use Athena smartcard which works perfectly in term of
Linux and PKCS#11. I enjoy using it with Java JCE, Mozilla, Tunderbird,
PAM_PKCS11, I've encrypted my disk using aes-loop and then required gpg to
support PKCS#11... And here we are...

> Patch that enables the use of any smart-card with GnuPG. It allows the use
of cards with pregenerated keys and uses an auxiliray file to
> feed metadata into GnuPG (I'm assuming a read-only token). Signing works


> There is a g10/p11howto.txt describing how to use it. I've given up on
maintaining it because of Werner's attitude towards PKCS#11.
> If someone else wants to maintain it - be welcome. I will provide you some
help if neccessary.

This is great work!
But the work needs to be moved into gpg-agent... :(

I would have help merging it if I knew that there is a chance to merge it
into to gpg source.

Best Regards,
Alon Bar-Lev.

More information about the Gnupg-users mailing list