From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: <01ed01c34740$aa416f80$b9844051@insultant.net> From: "boyd, rounin" To: <9fans@cse.psu.edu> References: <967768cb40aa71d536446da30109cc15@plan9.bell-labs.com> Subject: Re: [9fans] pop3 before smtp MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Date: Fri, 11 Jul 2003 02:09:15 +0200 Topicbox-Message-UUID: f4c6bdda-eacb-11e9-9e20-41e7f4b1d025 at some point when the bank [french] were talking about doing X.509 stuff and random things with their clients i suggested they stuck the certs on a chip/smart card (the things being rampant in france since a govt decree in 1991) and jamming it into a reader. when it dies it's dead and then you use some other channel to renew it. it's quasi private key, but not quite. RSA is a good idea. another guy i sort of worked with told me back in '98 that you could get quasi decent DES out of a chip card and RSA wasn't that far off.