Profile

Contact Details

Ribbons

Badges

Tim Hudson


Contributions

1 to 5 of 50+ total
Posted By Tim Hudson 01-13-2025 01:26
Found In Egroup: OASIS PKCS 11 TC
\ view thread
[ Bob Relyea ] > So we definitely decided that the token could reject one or the other of these cases. > A slow token may not regenerate CKA_VALUE and fail if CKA_VALUE is not specified. > A token with limitted space may require CKA_SEED. If the application supplies both > it is guarrenteed to work. ...
As discussed and agreed in the TC meeting, attached are the summary graphs to update the KMIP wikipedia page which has been somewhat neglected. As noted in the call, it includes all interop participants that have participated in two or more interops from 2014 onwards with the test results normalised ...
Posted By Tim Hudson 10-31-2024 17:21
Found In Egroup: OASIS PKCS 11 TC
\ view thread
[Simo Sorce]> There is quite a lot of people that think private keys should always be> stored as seed values and reconstructed when read into memory. I'd rephrase that as there is a very small group of people that are pushing the concept that private keys should never be encoded and should always be ...
Posted By Tim Hudson 10-24-2024 20:09
Found In Egroup: OASIS PKCS 11 TC
\ view thread
On Fri, Oct 25, 2024 at 9:47 AM Darren Johnson via OASIS wrote:> I was viewing things with a more strict definition of what "generated locally" means, but my definition wasn't in line with how the spec defines it. There are many things in the specification we could (and I'd suggest would) do differently.But ...
Posted By Tim Hudson 10-24-2024 18:06
Found In Egroup: OASIS PKCS 11 TC
\ view thread
What CKA_LOCAL means is very clearly defined in the specification. Wrapping and then unwrapping does not preserve the value of CKA_LOCAL as true - that is explicitly covered. Deriving keys also does not set the value of CKA_LOCAL to true. It is basically very clearly defined in terms of what the *application* ...