W3C home > Mailing lists > Public > public-identity@w3.org > November 2011

Re: Crypto HW Requirements (why it is out of scope)

From: Ron Garret <ron@flownet.com>
Date: Wed, 23 Nov 2011 07:17:41 -0800
Cc: Anders Rundgren <anders.rundgren@telia.com>, "public-identity@w3.org" <public-identity@w3.org>
Message-Id: <85BDB070-304D-43C3-AB10-FC58CCFD3941@flownet.com>
To: Richard L. Barnes <rbarnes@bbn.com>
On Nov 23, 2011, at 7:08 AM, Richard L. Barnes wrote:

> Hey Anders,
> Couple of observations:
>> The main point with crypto hardware is strong protection of secret/private keys, right?
> I don't think that's quite right.  Protection of private keys is certainly a very important function of HSMs, but they also provide validated implementations of cryptographic algorithms.

And, potentially, true (not pseudo) random numbers.

Received on Wednesday, 23 November 2011 17:30:17 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 16:09:06 UTC