[Cryptech Tech] road to berlin

[Fredrik Thulin]

On Tuesday, April 26, 2016 08:32:57 AM Rob Austein wrote:
...
> Yes, this is roughly what we discussed in some previous iteration, a
> daemon to handle multiplexing of an arbitrary number of PKCS #11
> clients into a single physical communication channel with the HSM.

Yes, I recall. Paul - is this what you meant with "a communications thread"? I 
didn't really understand that part...
 
> Security architecture of the above needs work.  PSKs not obvious to me
> here, probably need to back up to first principals (who is
> authenticating what to whom, who is protecting whom from what, who is
> responsible for storing/erasing/configuring what (and how), etc).
> 
> I had a proposal for this a while back, no longer recall how widely I
> circulated it or how completely I had fleshed out this sort of detail.
> Probably have it archived, somewhere.

Given working DFU, is it possible to divide this into need-to-have-before-
Berlin and nice-to-have, or is it one of these pieces we just have to have 
from day one?

/Fredrik
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.cryptech.is/archives/tech/attachments/20160426/891af75a/attachment.html>