[OpenAFS-devel] openafs - proposed cache security improvement

Jim Rees rees@umich.edu
Sat, 31 Mar 2007 14:02:10 -0500


I certainly would argue against deploying user private keys on a non-secure
device like an iPod.  We've been using Cryptoflex cards for testing, but I'd
prefer a usb solution.  Unfortunately the thumb size Cryptoflex has been
discontinued and I've been unable to find a suitable replacement.

Now if we could just convince Apple to include a tamper-resistant crypto
engine in the iPod you would be on to something.