Re: [Fed-Talk] Yosemite and FIPS 800-73 v3 smart cards and Applications
Re: [Fed-Talk] Yosemite and FIPS 800-73 v3 smart cards and Applications
- Subject: Re: [Fed-Talk] Yosemite and FIPS 800-73 v3 smart cards and Applications
- From: William Cerniuk <email@hidden>
- Date: Wed, 11 Feb 2015 17:03:37 -0500
Your assessment matched mine, spot on. My keychains are large and numerous.
This does beg the question : why linear search the keychains?
Surely and index item could be stored in each keychain holding the index for that and only that keychain. To be robust, the index would be able to be deleted to trigger the automatic rebuild of the index from the available items in the keychain. It would also make sense to have it as a user visible index item that presented useful information to the user on the state of the keychain items and index state.
--
R/Wm.
703.594.7616
> On Feb 11, 2015, at 16:36, Martin M. Lindner <email@hidden> wrote:
>
> I’ve opened several tickets with Apple on this topic. Never got a good answer but the issue appears to be how Apple Mail search the keychain for matching email addresses. As your keychains get longer the search takes longer. Also there seems to be a difference in timing if your replying to a message vs. creating a new message.
>
> Marty
>
>
> Martin Lindner
> Principal Engineer / Information Assurance Manager
> Software Engineering Institute
> Carnegie Mellon University
> Office: +1 412 268-3107
> Email: email@hidden
> Email: email@hidden
>
>
>
>
>
>
>> On Feb 11, 2015, at 10:54, William Cerniuk <email@hidden> wrote:
>>
>> Greetings,
>>
>> Apple Mail works solidly. Don’t have any secret sauce for Outlook. Working with Apple Mail in beta Yosemite, same, works.
>>
>> There is a delay to the PIV recognition. Insertion to keychain recognition is immediate. Keychain recognition to Email activitivation of the sign and encrypt buttons is where the delay is. This delay is typically only on first insertion but can be lengthy. I have found that quitting mail, inserting the PIV, launching Mail helps with the delay but is not the fix-all.
>>
>>
>> --
>> R/Wm.
>>
>> 703.594.7616
>>
>>
>>
>>> On 11-Feb-2015, at 10:45, Evans, Frazier [USA] <email@hidden> wrote:
>>>
>>> Help,
>>>
>>> I am currently trying to figure out what makes the most sense for this scenario.
>>>
>>> OSX Yosemite 10.10.2, Outlook v.15 from Office 365, and smart cards. Prior to 10.10, I was able to use commercial middleware solutions to send signed and/or encrypted emails. I was okay with this and it worked. With Yosemite 10.10.2 I am able to use the PIV auth certificate but that is it, at least some of the time and it is prompting me with the KeyChain Pin dialog not the Middleware dialog. Depending on the middleware and Outlook it will vary as to it’s behavior but they will all fail in some fashion and generally require a reboot to clear the corrupted system state.
>>>
>>> I am hoping that someone out here has gotten this to work stably and is willing to share their magic sauce. Please feel free to ask additional questions and I will try to answer what I can.
>>>
>>> Frazier
>>> _______________________________________________
>>> Do not post admin requests to the list. They will be ignored.
>>> Fed-talk mailing list (email@hidden)
>>> Help/Unsubscribe/Update your Subscription:
>>>
>>> This email sent to email@hidden
>>
>> _______________________________________________
>> Do not post admin requests to the list. They will be ignored.
>> Fed-talk mailing list (email@hidden)
>> Help/Unsubscribe/Update your Subscription:
>>
>> This email sent to email@hidden
>
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden