Re: [Fed-Talk] Security architecture for 10.8?
Re: [Fed-Talk] Security architecture for 10.8?
- Subject: Re: [Fed-Talk] Security architecture for 10.8?
- From: SB Tech <email@hidden>
- Date: Fri, 24 Feb 2012 17:23:37 +0000
smartcardservices was my first port of call before posting here - in
fact, that's where I got the Shawn Geddis quote. I posted a message
to the smartcardservices-users list on the 18th Feb, but it hasn't
even appeared in the archives yet so goodness knows what's happened to
it.
John Gruber was one of those who had a personal meeting with Phil
Schiller, and he subsequently revealed many details in his
DaringFireball blog. I don't think he'd risk jeopardising his
relationship with Apple by breaking an NDA to do so. If you're
talking about less-reputable sites reporting on 10.8 - well, I don't
peruse those :)
"Apple is pushing smartcard services out to vendors" - I'm gradually
getting that impression. It'd be useful to get some responses to my
other question, "Storing Keychain data" to see what the 3rd-party
solutions are really capable of.
On 24 February 2012 14:19, Link, Peter R. <email@hidden> wrote:
> The best place to look is http://smartcardservices.macosforge.org/. Smartcard services were deprecated in Lion: "Smart Card Services on OS X based on CDSA is no longer supported by Apple starting with OS X Lion 10.7." The key word here is CDSA but the site doesn't speak to anything related to Mountain Lion but I am expecting it to hold your answer when something official is available. I believe CDSA will be deprecated in Mountain Lion so anything relying on those encryption modules won't work. Lion and iOS previewed the future of encryption on OSX but if history means anything, Apple is pushing smartcard services out to vendors instead of trying to handle all of it themselves.
>
> This is just my understanding using what's publicly available. Of course, all the Mac sites are reviewing the new and changed features of Mountain Lion breaking the NDA and I haven't seen Apple stop them. That doesn't make it right, however.
>
>
> On Feb 23, 2012, at 10:48 PM, SB Tech wrote:
>
>> I wasn't trying to solicit anything that might be covered by an NDA; I
>> had only hoped that, with the recent public release of information on
>> 10.8, something Smart Card related had been disclosed by Apple but not
>> covered by the sites I follow.
>>
>> Thanks for the responses.
>>
>> S.
>>
>> 16:31, Trouton, Rich R <email@hidden> wrote:
>>> That's true. However, you shouldn't have access to Mountain Lion developer builds unless you have an Apple Mac Developer membership.
>>>
>>> Thanks,
>>> Rich
>>>
>>> On Feb 23, 2012, at 10:43 AM, Joel Esler wrote:
>>>
>>>> I don't think you can post (or see) the Mountain Lion forums unless you are a Mac Dev.
>>>>
>>>> J
>>>>
>>>> On Feb 23, 2012, at 6:04 AM, SB Tech <email@hidden> wrote:
>>>>
>>>>> Hi Rich,
>>>>>
>>>>> I was afraid that would be the case. Thanks for pointing me towards
>>>>> the devforums - I'll give them a shot.
>>>>>
>>>>> Regards.
>>>>>
>>>>> S.
>>>>>
>>>>> On 23 February 2012 00:48, Trouton, Rich R <email@hidden> wrote:
>>>>>> Unfortunately, all discussion of 10.8's particulars are under NDA. A good place to ask those questions are the Apple developer forums:
>>>>>>
>>>>>> http://devforums.apple.com
>>>>>>
>>>>>> Thanks,
>>>>>> Rich
>>>>>>
>>>>>> On Feb 20, 2012, at 5:05 PM, SB Tech wrote:
>>>>>>
>>>>>>> Hi,
>>>>>>>
>>>>>>> So, in researching an answer to my other question, I came across this info:
>>>>>>>
>>>>>>> "With the release of OS X Lion, Smart Card Services are deprecated and
>>>>>>> will not ship as a customer functioning service. […] CDSA will no
>>>>>>> longer ship in future releases of OS X." (Shawn Geddis, 20/7/11)
>>>>>>>
>>>>>>> I notice this question hasn't yet been asked in the list, so: Is
>>>>>>> anyone here able and permitted to comment on what kind of Smart Card
>>>>>>> support will be available in 10.8 "Mountain Lion"? I'm currently a
>>>>>>> 10.6 "Snow Leopard" user planning to leap-frog 10.7 "Lion" completely
>>>>>>> and go straight to 10.8, something which is supported by Apple (at the
>>>>>>> moment).
>>>>>>>
>>>>>>> If you're a registered Apple developer, apparently you could (can?)
>>>>>>> watch the video on iTunes of the meeting where this was discussed, the
>>>>>>> "Next Generation Cryptographic Services" Session 212 at the WWDC 2011
>>>>>>> Conference in San Francisco (June 6-10).
>>>>>>>
>>>>>>> Thanks :)
>>>>>>>
>>>>>>> _______________________________________________
>>>>>>> Do not post admin requests to the list. They will be ignored.
>>>>>>> Fed-talk mailing list (email@hidden)
>>>>>>> Help/Unsubscribe/Update your Subscription:
>>>>>>>
>>>>>>> This email sent to email@hidden
>>>>>>
>>>>>> ---
>>>>>> Rich Trouton
>>>>>> email@hidden
>>>>>>
>>>>>> JFRC Help Desk
>>>>>> phone: x4030
>>>>>> email: email@hidden
>>>>>>
>>>>>> The best way to get in touch with me is through email.
>>>>>>
>>>>>
>>>>> _______________________________________________
>>>>> Do not post admin requests to the list. They will be ignored.
>>>>> Fed-talk mailing list (email@hidden)
>>>>> Help/Unsubscribe/Update your Subscription:
>>>>>
>>>>> This email sent to email@hidden
>>>>
>>>
>>> ---
>>> Rich Trouton
>>> email@hidden
>>>
>>> JFRC Help Desk
>>> phone: x4030
>>> email: email@hidden
>>>
>>> The best way to get in touch with me is through email.
>>>
>>
>> _______________________________________________
>> Do not post admin requests to the list. They will be ignored.
>> Fed-talk mailing list (email@hidden)
>> Help/Unsubscribe/Update your Subscription:
>>
>> This email sent to email@hidden
>
> Peter Link
> Cyber Security Analyst
> Cyber Security Program
> Lawrence Livermore National Laboratory
> PO Box 808, L-315
> Livermore, CA 94550
> email@hidden
>
>
>
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden