Re: [Fed-Talk] Problems with Keychain/AF WebMail/CAC Or the endless trials of getting Macs to work with Smartcards
Re: [Fed-Talk] Problems with Keychain/AF WebMail/CAC Or the endless trials of getting Macs to work with Smartcards
- Subject: Re: [Fed-Talk] Problems with Keychain/AF WebMail/CAC Or the endless trials of getting Macs to work with Smartcards
- From: "Timothy J. Miller" <email@hidden>
- Date: Fri, 1 Jun 2007 08:42:00 -0500
On May 31, 2007, at 9:12 PM, Boyd Fletcher wrote:
I left one item off the list. the lack of hardware encrypted hard
disks in
Macs. Stolen laptops are a huge problem. If apple doesn't support
hardware
encrypted disks soon they will risk loosing all the DOD laptop sales.
Has anyone tried putting a 2.5" hardware encrypted drive in a
MacBook? Something tells me it might be made to work. If so, does
anyone want to go into the reseller market? ;)
I obviously disagree. Though Apple has made great strides some of the
assumptions it has made just much strife for Apple users.
Only because of specific Microsoft bugs and specific mis-
configurations in DoD deployments.
its not just OWA. Other sites in DOD have problems (particularly
ones that
use the email cert vs. the identity cert usually because the site
uses OWA.
Ask any of the service PKI offices, and they'll tell you the same
thing: if you're doing PKI authentication, you should accept *both*
the email and ID certs for a given user. Failure to do so *will*
cause user problems because users will have to select between them
and roughly half will get it wrong.
This is a problem even on Windows with IE.
I didn't say it was their fault, but was trying to drive home the
point that
the two of the most used applications on Macs don't fully support
Apple
Smartcard implementation. Hopefully can work with these vendors to
resolve
the problem.
You didn't say it was Apple's fault but you *are* asking Apple to
work to fix it. Apple has provided the necessary APIs, documented
them fully, constantly conducts developer training, and has an active
online support community.
Would you like them to forcibly enroll the Office Mac developers at
WWDC? ;)
I was pretty disappointed as well. Hopefully Apple will see the
light and
add either EC/54 support or better yet add a smartcard reader to there
machines.
There may be physical constraints in the laptop chassis. Note that
Dell and HP et. al. aren't offering built-in card readers in laptops
that are anywhere near as small or thin as the MacBook Pro.
In fact, if you take 'em apart what you'll find is a two-port PCMCIA
daughter board, only with one port pre-populated with a card reader
and covered over.
-- Tim
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden