Always request a KeyStore PKCS11 PIN

Question

Always request a KeyStore PKCS11 PIN

I have an applet for digital signing. My problem is that the keystore is initialized, but it remains open until the browser closes. How can I request a pin every time I want to sign?

This is the initialization code:

/* Se obtiene el proveedor del contenedor de claves */
pkcs11config = "name=Athena\nlibrary=C:\\Windows\\system32\\asepkcs.dll";
byte[] pkcs11configBytes1 = pkcs11config.getBytes();
ByteArrayInputStream configStream1 = new ByteArrayInputStream(pkcs11configBytes1);
BouncyCastleProvider providerBC = new BouncyCastleProvider();

Security.addProvider(providerBC);
//Cargo el proveedor de la CIPE
providerPKCS11 = new SunPKCS11(configStream1);
Security.addProvider(providerPKCS11);
ks = KeyStore.getInstance("PKCS11", providerPKCS11);
ks.load(null, null);

Can someone tell me how to fix this? Thank.

+4

java passwords keystore smartcard pkcs # 11

Fernando Apr 15 '14 at 18:43

source share

2 answers

Maarten Bodewes · Answer 1 · 2014-04-15T19:50:12+0000

PKCS № 11 PIN-, . , CKA_ALWAYS_AUTHENTICATE . PIN- , PKCS # 11.

jariq · Answer 2 · 2014-04-16T20:48:35+0000

PKCS # 11 , providerPKCS11.logout();, PKCS # 11 - . KeyStore PIN- - . GUI PIN- , .

Always request a KeyStore PKCS11 PIN

More articles: