[Cscwg-public] Re FIPS tokens supporting RSA 3072

Inigo Barreira Inigo.Barreira at sectigo.com
Fri Mar 26 12:56:54 UTC 2021 

Hi,

Don´t have all the details and as indicated in past emails it all depends on what´s required as certified because there´re chip makers that certified their hardware and OTOH there are software devs that certified their OS or applets and then they work together.
But a quick list of these hand-tokens I see providers like:

-          Safenet

-          Nitrokey

-          Bit4id

-          G&D

-          ACS

-          Feitian probably

And maybe more when there´s a requirement from standards or best practices and users start asking.

Regards

From: Bruce Morton <Bruce.Morton at entrust.com>
Sent: viernes, 26 de marzo de 2021 13:32
To: Inigo Barreira <Inigo.Barreira at sectigo.com>; cscwg-public at cabforum.org; Adriano Santoni <adriano.santoni at staff.aruba.it>
Subject: RE: [Cscwg-public] Re FIPS tokens supporting RSA 3072

CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe.

Hi Inigo,

Can you provide the names of the products and the link to their FIPS 140 or CC compliance?

Thanks, Bruce.

From: Cscwg-public <cscwg-public-bounces at cabforum.org<mailto:cscwg-public-bounces at cabforum.org>> On Behalf Of Inigo Barreira via Cscwg-public
Sent: Friday, March 26, 2021 7:37 AM
To: Adriano Santoni <adriano.santoni at staff.aruba.it<mailto:adriano.santoni at staff.aruba.it>>; cscwg-public at cabforum.org<mailto:cscwg-public at cabforum.org>
Subject: [EXTERNAL] Re: [Cscwg-public] Re FIPS tokens supporting RSA 3072

WARNING: This email originated outside of Entrust.
DO NOT CLICK links or attachments unless you trust the sender and know the content is safe.
________________________________
Hi Adriano,

Sorry for jumping late here but I´m restarting with the CABF issues and am still in the process :(
Regarding your question, we can differentiate between those USB&smartcards and the HSMs. So, for the first, we´ve found some others, but it´s true that there are not many but we´re aware of 3-4 additional providers. In the HSM space, I see no problems.

Regards

From: Cscwg-public <cscwg-public-bounces at cabforum.org<mailto:cscwg-public-bounces at cabforum.org>> On Behalf Of Adriano Santoni via Cscwg-public
Sent: miércoles, 17 de marzo de 2021 16:08
To: cscwg-public at cabforum.org<mailto:cscwg-public at cabforum.org>
Subject: [Cscwg-public] Re FIPS tokens supporting RSA 3072

CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe.


I already posted this question yesterday, but apparently it did not get through.

I was asking: is the SafeNet eToken 5110 CC the only FIPS token supporting RSA 3072 available on the market?

I am investigating this matter myself, and although I am not finished it seems there aren't many... possibly just one.

If so, it would be a rather unfortunate situation competition-wise.

Adriano


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/cscwg-public/attachments/20210326/41e61c0d/attachment-0001.html>

More information about the Cscwg-public mailing list