NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > MUSCLE Smartcard Development> 2008-q1

[Muscle] updated experience, 2 years later.

From: Peter Williams (home_pwmsn.com)
Date: Sat Mar 08 2008 - 17:29:06 CST

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Well I have to say I'm impressed both this afternoon and even more so later this afternoon - since this morning depressed me.

This morning:-
2 years ago, I know dominated muscle applet, muscleshell, various tools for GP loading, and GP command sets for its fancy security features such as DAP and receipts. I know I also dominated T0 over CCID firmware for 8051 uPs, and various bits of microcodable verilog to support fancy crypto modes in the ATMEL ICC's 16 bit crypto co-processor, we used once to use. Having left this project, 2 years later I return to its src tree - and its just a load of mumbo-jumo of various tools, old compilers by firms that no longer exist, and scripts in 9 toolchains, A bit of openssl here, a win32 port of muscletool there, an atmel load script for promming micros, loadfile for starting up a COS, scripts to personalize muscle applet, along with various simulations.

I could not make head or tail of it despite being the programmer of it all) !

Not happy (with myself).
This afternoon:-
So using Vista SP1 and an old SCM cardreader which received auto-updated firmware/drivers, I went to the identityalliance.com site, and installed its download package. Then I stuck in my really old JCOP21 javacard democard from IBM Zurich and use the idalliance tool's profile menu to configure it (as a musclecard). 60s later, its done . I even set easily a new admin and user pin. Even set a password in the password store.

So, on a roll, I went using the same vista host to the openid.trustbearer.com and and registered this card - enrolling it with my trustbearer openid. 60s later, I have an SSO-capable token.

I'm http://openid.trustbearer.com/home_pw. What else?!!

Perfect. No fuss (and no compiling required of 2 year old code that I cannot fathom any longer).

Later this afternoon (now that I'm feeling lucky and cared for):-
I use task manager to kill my locked up IE7 (sob). Oh well, it happens 4 times a day with or without smartcard installs!

So I go to http://www.plaxo.com/openid to use my new found capabilities. First I remove my old jcop 21 with its old musclecard applet from the old SCM reader.

plaxo redirects the browser to trustbearer, which prompts me to insert a card (after an activeX download). Perfectly reasonable. So I do as asked and it them prompts me for a pin: which I enter. All perfectlty normal and expected.

trust bearer redirects me to plaxo, which now asks me to bind to my asserted openid to the plaxo account, given I have a verified id assured as multi-factor-hardware!

Perfect. It was all seemless, first time through.
Peter.

_______________________________________________
Muscle mailing list
Musclelists.musclecard.com
http://lists.drizzle.com/mailman/listinfo/muscle

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]