14 Jan
2011
14 Jan
'11
8:59 a.m.
On Thu, Jan 13, 2011 at 11:54:58PM +0100, Lionel Elie Mamane wrote:
I discovered that my driver is only able to use
the
authentication key. Commands using the signature key have to be
cryptographically authenticated to the card! That's harder to
"fake" than plain-text communication :-/
Here, the easiest would probably be to disassemble
the binary-only
driver to get the crypto algorithm and key used for the
authentication; AFAIK this would be legal under article 6 of the
European directive on protection of computer programs.
Then, we still have some implementation work to do,
to implement
"secure messaging" (the protocol used to crypto-authenticate the
commands) in OpenSC.
Actually, work to do that is already underway in
/branches/vtarasov/opensc-sm.trunk in their SVN. Excellent!
--
Lionel