Subject: openpgp card and basiccard RNG

Luis Ressel aranea at aixah.de
Thu Feb 13 21:13:22 CET 2014


On Thu, 13 Feb 2014 19:32:19 +0100
Werner Koch <wk at gnupg.org> wrote:

> ... of the specs.  Not of the concrete implementation.  I hesitated to
> sign an NDA and thus have no more insight into this than most others.

You've got to sign an NDA to learn about the implementation of this
security device which is supposed to be open? That sounds nasty and
basically means there could even be backdoors in the implementation, not
only in the underlying system...


Regards,
Luis Ressel

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 966 bytes
Desc: not available
URL: </pipermail/attachments/20140213/e4a768e3/attachment-0001.sig>


More information about the Gnupg-users mailing list