Private Keys are cached "forever" leading to inop HTTP-TLS-servers
Andrew Haley
aph-open at littlepinkcloud.com
Tue Jun 21 07:32:03 UTC 2022
On 6/16/22 21:02, Lothar Kimmeringer wrote:
> If they are allowed to become unuseable (as explained, I see that as
> something that is to be expected IRL)
I don't think they are. There is nothing in PKCS#11 that gives an implementation
any permission to time out.
--
Andrew Haley (he/him)
Java Platform Lead Engineer
Red Hat UK Ltd. <https://urldefense.com/v3/__https://www.redhat.com__;!!ACWV5N9M2RV99hQ!JWFTUuaaENCVogZet_voTXNz393V2ewVZcuErhjsKanMTJhbCm39xc98M_xGyuW5SH7L5iTmP3ipmB76_VGGmD3jxTqjiw$ >
https://urldefense.com/v3/__https://keybase.io/andrewhaley__;!!ACWV5N9M2RV99hQ!JWFTUuaaENCVogZet_voTXNz393V2ewVZcuErhjsKanMTJhbCm39xc98M_xGyuW5SH7L5iTmP3ipmB76_VGGmD0v5MXQog$
EAC8 43EB D3EF DB98 CC77 2FAD A5CD 6035 332F A671
More information about the security-dev
mailing list