W3C home > Mailing lists > Public > public-identity@w3.org > November 2011

Re: Crypto HW Requirements (why it is out of scope)

From: Ron Garret <ron@flownet.com>
Date: Wed, 23 Nov 2011 07:17:41 -0800
Cc: Anders Rundgren <anders.rundgren@telia.com>, "public-identity@w3.org" <public-identity@w3.org>
Message-Id: <85BDB070-304D-43C3-AB10-FC58CCFD3941@flownet.com>
To: Richard L. Barnes <rbarnes@bbn.com>
On Nov 23, 2011, at 7:08 AM, Richard L. Barnes wrote:

> Hey Anders,
> 
> Couple of observations:
> 
>> The main point with crypto hardware is strong protection of secret/private keys, right?
> 
> I don't think that's quite right.  Protection of private keys is certainly a very important function of HSMs, but they also provide validated implementations of cryptographic algorithms.

And, potentially, true (not pseudo) random numbers.

rg
Received on Wednesday, 23 November 2011 17:30:17 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 23 November 2011 17:30:18 GMT