Re: cleaning up keyrings

From: Stef Walter <stef-list memberwebs com>
To: Alan Cox <alan lxorguk ukuu org uk>
Cc: Havoc Pennington <hp redhat com>, desktop-devel-list gnome org
Subject: Re: cleaning up keyrings
Date: Tue, 28 Aug 2007 22:35:46 +0000 (UTC)

Alan Cox wrote:
>> I just started thinking about this today, so let me know what's missing.
> 
> One of the things you can use the TPM for in a treacherous computing
> system is simply as a poor quality smart card. And for that matter
> working with a proper smart card is similar. Being able to share my
> keyring simply by
> 
> 	- USB
> 	- Bluetooth
> 	- Internet
> 	- Smart Card
> 	- TPM (where there is a common root key)
> 
> including merging entries from multiple sources. PAM already lets me
> direct sensitive system authentication questions to a seperate trusted
> display (my phone) which I can't currently do for the other apps.

You can do this via USB today with gnome-keyring. There's currently not
much UI for it (I'd like to implement the UI properly), but it should work:

http://live.gnome.org/GnomeKeyring/Removable

If properly thought out, it seems Internet storage of a keyring could
work in a similar way. More on this later...

Cheers,
Stef Walter

References:
- cleaning up keyrings
  - From: Havoc Pennington
- Re: cleaning up keyrings
  - From: Alan Cox

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]