On Thu, February 21, 2019 9:46 am, Wiktor Kwapisiewicz wrote:
On 21.02.2019 15:40, Derek Atkins wrote:
This is exactly it -- we are storing a certificate on an NFC (or even
RFID) chip that would be presented to a verifier -- and then the chip
would perform a key exchange using the key in the certificate for a
proof-of-possession authentication. Every byte matters, which is
why we went with OpenPGP and not X509!
Sounds interesting, too bad it's not public, I'd gladly check out the
implementation details :)
I will see what I can do about that. But no promises. :-)
Thanks for taking the time to describe it all!
You're welcome. Thanks for listening :)
Derek Atkins 617-623-3745
Computer and Internet Security Consultant
openpgp mailing list