06:52 Apr 7, 2011 

Tak už mám jasněji:

Padding viz str. 36 zde:
http://docs.google.com/viewer?a=v&q=cache:eDNOT2q87osJ:https...

"CompuSec® Mobile uses the standard AES algorithm. The key length is fixed to 256 bit. Short keys of 128 or 192 bit are not supported. Hard disk, media and network encryption is performed in the HW chip integrated on the board (FPGA).

Protection Mechanisms
CompuSec® Mobile protects its secrets using a smart card chip that is directly mounted on the printed circuit board of the product. All encryption and key management is performed in the FPGA chip, which erases all secrets when power is switched off. After power on, both the user smart card and the on board smart card together recalculate the secrets. This provides excellent protection even when a CompuSec® Mobile is lost."
http://www.ce-infosys.com/english/commercial_products/compus...

06:25 Apr 7, 2011 

Našel jsem nějaké reference, ale zatím z toho nejsem úplně moudrý:
http://www.gooze.eu/es/node/355
"...create a raw PKCS#1 padded RSA signature..."

http://www.freepatentsonline.com/7080199.html
"The number of bytes of the padded signature is fixed to K bytes (K is an even number)"
"The padded signature is part of the flash file to be transferred, and is stored on the local medium of the host"

http://osdir.com/ml/ietf.irtf.cfrg/2005-04/msg00001.html
"When an RSA signature is created, the signature algorithm input encapsulates the hash output with a padding method. RFC 3447 (PKCS #1 v2.1) specifies two methods of padding: EMSA-PKCS1-v1_5 and EMSA-PSS. EMSA-PKCS1-v1_5 is the traditional method of padding, but since attacks have been found on that method PSS was added to PKCS#1 v2.1."

Něco jako integrované (?? na tokenu?) doplnění (odsazení/oddělení od ostatního obsahu?) (bezpečnostního) podpisu/značky?