[12749] in cryptography@c2.net mail archive
Re: Encryption of data in smart cards
daemon@ATHENA.MIT.EDU (Krister Walfridsson)
Wed Mar 12 17:49:44 2003
X-Original-To: cryptography@wasabisystems.com
X-Original-To: cryptography@wasabisystems.com
Date: Wed, 12 Mar 2003 23:08:26 +0100 (MET)
From: Krister Walfridsson <cato@df.lth.se>
To: Werner Koch <wk@gnupg.org>
Cc: cryptography@wasabisystems.com
In-Reply-To: <8765qpk310.fsf@alberti.g10code.de>
On Tue, 11 Mar 2003, Werner Koch wrote:
> If you want to encrypt the
> data on the card, you also need to store the key on it. And well, if
> you are able to read out the data, you are also able to read out the
> key (more or less trivial for most mass market cards).
This is not completely true -- I have seen some high-end cards that use
the PIN code entered by the user as the encryption key. And it is quite
easy to do similar things on Java cards...
/Krister
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@wasabisystems.com
