Best practices/HOWTO for key storage in small office/home office setting?
Ian Farquhar - Network Security Group
ian.farquhar at sun.com
Wed Oct 3 20:43:41 EDT 2001
Rick Smith at Secure Computing wrote:
> At 11:41 AM 10/2/2001, Bill Stewart wrote:
> >Sounds like you're starting to reinvent the I-Button.
> >(Dallas semiconductor's product - uses a small computer chip
> >and an infrared link attached to a watch battery.)
> Or the iKey which is pretty much exactly what you're describing -- smart
> card-like crypto functions and key storage that plugs right into a USB
> socket.
Not quite. The iKey is tamper evident (evaled to FIPS 140-1 Level 2 -
cert
#161), whereas the JavaButton is tamper respondent (FIPS 140-1 Level 3
-
cert #111). I'd much prefer a tamper respondent keystore.
Ian.
PS. Personal opinions, not my employer's.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com
More information about the cryptography
mailing list