Yes but the UX works better much of the time. Downside of course is that you can’t sign documents without an Internet connection, if that’s something you may need to do. And the fact that you need a phone
Yes, of course. Alternatives consodered, I think the Estonian eID is really well thought out and implemented in maybe the best way possible. Really pleased with it.
That solves one issue, the other being how buggy it can be to use in the browser. The file signing feature is separate software (which has an official Linux port!), but to log into your bank, etc, browsers often pre-decide for you which certificate you want to use and then complain that it’s not present. Perhaps it’s changed now, I haven’t used it much in quite a few years now because Mobiil-ID and Smart-ID have just worked 99% of time.
It’s annoying to have to have a card reader though, so everyone just uses Smart-ID or Mobiil-ID anyway. But at least we have the option not to.
Mobiil-ID and Smart-ID just register a new certificate to your ID, so it’s the same mechanism, different UX :)
Yes but the UX works better much of the time. Downside of course is that you can’t sign documents without an Internet connection, if that’s something you may need to do. And the fact that you need a phone
Yes, of course. Alternatives consodered, I think the Estonian eID is really well thought out and implemented in maybe the best way possible. Really pleased with it.
Kuradi lahe
I’m pretty sure that you can use something like a YubiKey as a PKCS#11 certificate store, if the issue is just the card reader form factor.
kagis
Yeah:
https://developers.yubico.com/yubico-piv-tool/YKCS11/
That solves one issue, the other being how buggy it can be to use in the browser. The file signing feature is separate software (which has an official Linux port!), but to log into your bank, etc, browsers often pre-decide for you which certificate you want to use and then complain that it’s not present. Perhaps it’s changed now, I haven’t used it much in quite a few years now because Mobiil-ID and Smart-ID have just worked 99% of time.