#language en ## 20160505 AK ---- [[CryptoHardware/CZ|Ĩesky]] | '''english''' ---- = Help and Howtos on Cryptography Hardware = * [[Possum]] was a thought experiment in doing an open source design competition to build a new-get signing server. * [[Roots/EscrowAndRecovery/RandomHardware|collection of random things]] for our [[Roots/EscrowAndRecovery|Escrow and Recovery]] project for the [[Roots/NewRootsTaskForce|New Roots Task Force]]. * [[Gemplus|Howto]] on setting up a Gemplus Twin and Gemsafe PKI card under Ubuntu/Debian * [[OpenSC|Howto]] on setting up Firefox and Thuderbird in Ubuntu/Debian to make use of OpenSC * [[PamAuthentication|Howto]] on using PAM + OpenSC to do system authentication in Ubuntu/Debian * [[SSHOpenSC|Howto]] on using SSH + OpenSC to do remote system authentication in Ubuntu/Debian * [[Tess]] small program coded in php/php-gtk to provide a platform independent PKI to CAcert interface ---- * [[eToken]] '''To be verified''' * [[SecurityKey|Security Key Token]] * [[GoozeToken|Gooze Token]] === Notes === OpenSC is an abstract layer that programs can utilise to access a vast multitude of Cryptographic Hardware devices. We have a requirement list for SmartCards that should be handed out to all Smartcard vendors. == Under Windows ! == We need more specific windows based stuff. having debian/ubuntu is nice, and im glad we do, but that doesnt help the majority of us using windows :) Find some hints using German Privacy Foundation's [[http://www.crypto-stick.com/en/applications|CryptoStick]] with different applications. Well, ID Ally under Windows (2K/XP Pro) is nice with Firefox and Thunderbird with the Axalto Cyberflex 32K and 64K through PKCS11 support. == A very pleasant way to log in CAcert web site == Works fine with CAcert (also Thawte)... Take care... once generated on the token you cannot retrieve the private keys ! http://www.identityalliance.com/identity_ally.php http://www.cyberflex.com/Products/cards_egate.html http://www.reflexreaders.com/Products/reflex_egate.html http://www.reflexreaders.com/Support/software.html (drivers) http://www.market.axalto.com/ (for shopping) Work also with a muscle applet loaded first without ID_Ally. Also ID Ally connect to an internet server when loading/reinstalling a smartcard ! [[http://www.grhq.net/idally/ID_ally.jpg|ID Ally pict]] [[http://www.grhq.net/idally/firefox_egate.jpg|Firefox pict]] contact homer dot simpson at grhq dot net for any question == Usefull links about Smartcards == http://www.tldp.org/HOWTO/Smart-Card-HOWTO/index.html (general information) http://lair.fifthhorseman.net/~dkg/egate/index.html (etoken on Debian) ---- . CategoryCryptoHardware