[Pki-clean-room-devel] implementing smartcard functionality
Elizabeth Ferdman
gnudevliz at gmail.com
Fri Jan 13 00:56:49 UTC 2017
Hello,
I would like to add some code that can put the keys on a smartcard.
I already added a TUI that prompts the user for
Smartcard last name, first name, language, and login as well as admin
pin, user pin and reset code.
https://github.com/eferdman/gpg-helper-scripts/blob/master/smartcard-init.sh
I also added another file that outlines what the workflow might look
like from the command line for initializing a smartcard with gpg
--card-edit and gpg --edit-key + keytocard for the master and subkeys.
https://github.com/eferdman/gpg-helper-scripts/blob/master/smartcard-workflow
There's no "batch" option for this...
What is a good way to implement this? Can this be done with
gpgme or python bindings in gpgme?
Another question-- when setting or changing user info and pins on the
smartcard, are the admin/user pins and reset code entered on the reader
or through the command line? Same question for doing keytocard -- does
the user enter the admin pin after doing keytocard on the pinpad or
through their keyboard?
Liz
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pki-clean-room-devel/attachments/20170112/3648fff3/attachment.sig>
More information about the PKI-Clean-Room-Devel
mailing list