|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Relative Security Provided by Cached Domain Credentials?
From: Stefano Zanero (stefano.zanero
ieee.org)
Date: Mon May 31 2004 - 14:43:39 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Sarbjit Singh Gill wrote:
>
> So when a user logs on the w2k terminal using a smartcard + pin no (rather
> then the usual A;t-Ctrl-Del), does the private certificate from the
> smartcard get copied into the profile data on the disk ?
The private key NEVER leaves the smart card. The whole idea of storing
it on a smart card is not to let the secret leave the tamperproof device.
The device itself performs RSA operations on behalf of the host
computer. It's called a *smart* card because it has computational power.
Regards,
Stefano
---------------------------------------------------------------------------
---------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]