Re: Smart card connection pgAdmin/PostgreSQL - Mailing list pgadmin-hackers

From Jean-Michel Pouré - GOOZE
Subject Re: Smart card connection pgAdmin/PostgreSQL
Date
Msg-id 1268832496.18665.6.camel@acer
Whole thread Raw
Responses Re: Smart card connection pgAdmin/PostgreSQL
List pgadmin-hackers
Le mercredi 17 mars 2010 à 13:13 +0000, Dave Page a écrit :
> I assume
> it's possible to store an SSL private key on them for authentication
> against a remote server?

Yes, this is the basic feature.

It is also possible to use the smartcard chip to make crypto operations,
thus offering superior decryption/encryption security.

At no moment, the private keys leave the key. Thus there is very little
possibility to steal secrets. Even on a compromised computer, the
secrets cannot be stolen. To connect, you need a smart card and the PIN
code.

Also, you may think of server-side data encryption, where tables are
encrypted.

In some companies, data are considered like the heart of the activity.
In these business it may be valuable to use smart cards.

Kind regards,
Jean-Michel
--
                  Jean-Michel Pouré - jmpoure@gooze.eu


pgadmin-hackers by date:

Previous
From: Jean-Michel Pouré - GOOZE
Date:
Subject: Donation of 3 FEITIAN PKI smart cards to the pgAdmin community
Next
From: Dave Page
Date:
Subject: Re: Smart card connection pgAdmin/PostgreSQL