Page MenuHome GnuPG
Create Task
Maniphest T6226

Native PKCS#11 support, by attaching any module/library, without having to use workarounds (alternative gpg-agent etc.)
Closed, WontfixPublic
Actions

Description

Native PKCS#11 support, by attaching any module/library, without having to use workarounds (alternative gpg-agent etc.)

The problems faced when trying to use any other card than the OpenPGP Card are simply too great and reuire lengthy workarounds. The average user won't be able to do it. There was no reason for creating a separate card standard, since PIV and PKCS#11 already exist. And, truth be told, PKCS#11 has taken over and almost all card manufacturers support it. Supporting PKCS#11 will simply boost GnuPG penetration and lower the barrier for using it with secure elements.

Event Timeline

margirou created this task.Oct 4 2022, 5:01 PM
margirou added a comment.Oct 4 2022, 5:04 PM
This comment was removed by margirou.
margirou updated the task description. (Show Details)Oct 4 2022, 5:49 PM
werner closed this task as Wontfix.Oct 4 2022, 8:57 PM
werner claimed this task.
werner added a subscriber: werner.

Most PCKS#11 drivers are proprietary software which do not fit well into a free software system. Thus we avoid them. And of course we provide pcksc#11 support: Install Scute. There are no workarounds like alternative gpg-agent's - those things don't work reliable and are not supported.

However, we have one project on our list to implement support for a certain card using such a proprietary pkcs#11 driver - but it will be a Windows only thing and only be required because we can't sign an NDA to get infos about that specific card. Nothing you want to use in a free software environment.

We actually support quite some card types and definitely not only cards according to the OpenPGP card specification.

Please use the gnupg-users mailing list for further discussions,

canti59 added a commit: rG8046fcac63db: po: Update Czech translation..Oct 14 2022, 2:10 AM
gniibe removed a commit: rG8046fcac63db: po: Update Czech translation..Oct 14 2022, 2:50 AM