[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Auth & Sign Keys for PCs and Phones
Dear KMIPpers,
IMHO, keys for user-authentication and signatures
for devices like PCs and mobile phones will [continue to] be on-line provisioned
with browsers as the primary vehicle. Microsoft's auto enrollment
stuff is a notable exception.
Although improperly advertized, the browser
vendors have recently begun standardizing such a protocol known
as <keygen> in W3C/WHATWG:
Based on the current white-papers and input
documents, it appears that KMIP could be a nice
fit for non-personal keys like featured in storage devices,
but would require a major redesign to address for example authentication keys
for consumers.
Regarding authentication keys for
employees, the majority are [and probably will remain] distributed
as physical tokens, not needing any protocol.
Anders Rundgren
|
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]