"scott.stark(a)jboss.org" wrote : | I'm not opposed to this driving features, like a new keystore format to allow for these types of certs, as you know I love the idea of smart cards replacing the password hell that exists today. | Not sufficient. It is still single factor. There is a real need for two or multi-factor authentication. SRP (Scott's Robust Password) system also does not make the cut. ;) Any legal issues (patents, licensing) with bouncy castle api? View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3980201#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...