FOSDEM is the biggest free and non-commercial event organized by and for the community. Its goal is to provide Free and Open Source developers a place to meet. No registration necessary.

Nikos Mavrogiannopoulos
Day Saturday
Room AW1.105
Capacity 48
Start time 16:00
End time 16:30
Duration 00:30
Track Security & hardware crypto devroom

Unifying access to PKCS#11 tokens

ryptographic services in modern operating systems today are being accessed by applications by using libraries, either high level ones that hide all details, or low level ones that force the user to deal with an amount of (un)interesting details of each cryptographic algorithm. Applications in the GNU/Linux and *BSD operating systems usually share the same libraries for cryptographic operations and protocols. Those can be one of Botan, OpenSSL, NSS, GnuTLS and maybe some more. This is quite a variety of choices which we believe is because of the different programming style that each library enforces, the different algorithms it provides and the ease of usage, which are subjective issues that depend on the eye of the beholder.

However this diversity of cryptographic libraries has some disadvantages. For operations such as signing/encryption involving PKCS #11 hardware tokens, or software modules, objects need to be referenced. Currently there is no uniform way of referencing those objects and each of the libraries has its own conventions or delegate the burden of referencing objects to the application. This in effect makes sharing of those object references between different applications impossible and users are required to learn each application's unique interface. Moreover the fact that usually there are more than one PKCS #11 providers in a system, but no way to globally enable them for all cryptographic applications, leaves the burden of setup to users.

We will discuss the challenges posed and and propose a solution.

Next (up to 3) talks in the same room (AW1.105):

When Event Track
16:30-17:00 How to store Trust Security & hardware crypto
17:00-17:30 BOFH meets SystemTap: rootkits made trivial Security & hardware crypto
17:30-18:00 Dynalogin Security & hardware crypto

Events that start after this one (within 30 minutes):

When Event Track Where
16:30-17:00 How to store Trust Security & hardware crypto AW1.105
16:30-16:45 The My.Media.Lite Recommender System Library Data Analytics AW1.124
16:30-16:55 MySQL 5.5 Replication Enhancements: an overview MySQL & friends H.2213
16:30-17:00 What in the World Is This 'IcedTea-Web' Project? Free Java AW1.125
16:30-17:00 Model Checking the Linux Kernel ? CrossDistro H.1308
16:30-17:00 XMPP and Federated Social Networking Jabber & XMPP AW1.121
16:30-17:15 Latest progress of Simple WebKit and QuantumSTEP World of GNUstep AW1.117
16:30-17:15 Vala? Are you kidding me?? Crossdesktop H.1309
16:30-17:15 SUMO -- How Mozilla supports 400 Million users with 4 employees Mozilla H.1301
16:40-16:55 Forban: a simple link-local opportunistic p2p free software Lightning Talks Ferrer
17:00-17:30 BOFH meets SystemTap: rootkits made trivial Security & hardware crypto AW1.105
17:00-17:15 Sahi: automated cross-browser web testing Lightning Talks Ferrer
17:00-17:25 Seamless MySQL replication failover with Tungsten MySQL & friends H.2213
17:00-17:30 Free Culture, Free Data - How we use Data to Drive at Wikipedia Data Analytics AW1.124
17:00-17:30 The Free JavaWS Implementation in IcedTea-Web Free Java AW1.125
17:00-17:30 Power, Freedom, Software GNU H.2214
17:00-17:40 Mono's new garbage collector Mono AW1.120
17:00-18:00 Milkymist : Pushing further the limits of electronics openness Embedded Lameere
17:00-18:00 Towards the Comparative Analysis of Evolving Libre Software CrossDistro H.1308
17:00-18:00 BSD-Licensed Toolchain Status BSD AW1.126
17:00-18:00 Gentoo's Reform and Future CrossDistro H.1302