Maniphest T6364

More device (including virtual) support
Open, WishlistPublic
Actions

Assigned To
gniibe
Authored By
gniibe
Feb 1 2023, 6:45 AM
Tags
None
Subscribers
gniibe

Description

There are many devices which can store private keys.

Adding more support would be good, but firstly, it's better to define our scope/focus, as supporting proprietary hardware is difficult task.

Related Objects
Search...

Event Timeline

gniibe triaged this task as Wishlist priority.Feb 1 2023, 6:45 AM
gniibe created this task.
gniibe added a comment.Feb 1 2023, 6:49 AM

Current status:

  • Gnuk Token, Yubikey, OpenPGPcard with some card readers (only w/ specific reliable card readers)
  • some cards some card readers (many are not supported well)
  • TPM

Possible targets:

I listed those two, as we can develop with no physical hardware and access implementations are available as free software.

werner added a subtask: T6234: Implement access to smartcards via a generic pkcs#11 interface.Feb 1 2023, 9:41 AM
gniibe added a comment.Feb 6 2023, 5:12 AM

For a device which only provides PKCS#11 driver, I decide to test with SoftHSM.

Testing such a device, there are helper libraries and bindings:

I am currently testing with Python PKCS#11.