Skip site navigation (1) Skip section navigation (2)

Re: Smart card connection pgAdmin/PostgreSQL

From: Dave Page <dpage(at)pgadmin(dot)org>
To: jmpoure(at)gooze(dot)eu
Cc: pgadmin-hackers(at)postgresql(dot)org
Subject: Re: Smart card connection pgAdmin/PostgreSQL
Date: 2010-03-17 14:12:17
Message-ID: 937d27e11003170712p56666aadvc3ae810a8afdc35c@mail.gmail.com (view raw or flat)
Thread:
Lists: pgadmin-hackers
2010/3/17 Jean-Michel Pouré - GOOZE <jmpoure(at)gooze(dot)eu>:
> Le mercredi 17 mars 2010 à 13:13 +0000, Dave Page a écrit :
>> I assume
>> it's possible to store an SSL private key on them for authentication
>> against a remote server?
>
> Yes, this is the basic feature.
>
> It is also possible to use the smartcard chip to make crypto operations,
> thus offering superior decryption/encryption security.
>
> At no moment, the private keys leave the key. Thus there is very little
> possibility to steal secrets. Even on a compromised computer, the
> secrets cannot be stolen. To connect, you need a smart card and the PIN
> code.
>
> Also, you may think of server-side data encryption, where tables are
> encrypted.
>
> In some companies, data are considered like the heart of the activity.
> In these business it may be valuable to use smart cards.

Cool - thanks. It's interesting tech, though whether I'll have time to
look into it myself at the moment isn't clear unfortunately.

-- 
Dave Page
EnterpriseDB UK: http://www.enterprisedb.com
PG East Conference: http://www.enterprisedb.com/community/nav-pg-east-2010.do

In response to

pgadmin-hackers by date

Next:From: pgAdmin TracDate: 2010-03-17 16:45:45
Subject: [pgAdmin III] #152: pgAdmin 1.10.2 crashes does not start
Previous:From: Jean-Michel Pouré - GOOZEDate: 2010-03-17 13:28:16
Subject: Re: Smart card connection pgAdmin/PostgreSQL

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group