fhd...@unm.edu wrote:
Hello,
Is there any reason why one needs to protect CSR (e.g. encrypting it)
from public view?
Can't think of one myself...
I was under impression that is the key that needs
to be protected not the CSR?
That's correct.
Thank you,
Farid
you're welcome.
lh..
Hello,
Is there any reason why one needs to protect CSR (e.g. encrypting it)
from public view? I was under impression that is the key that needs
to be protected not the CSR?
Thank you,
Farid
__
OpenSSL Project
The private key is what needs to be protected. The CSR contains
information that you may consider proprietary, but the only *really*
important piece of it is the public key, which is going to be in the
issued certificate anyway.
-Kyle H
On Tue, Mar 31, 2009 at 1:15 PM, fhd...@unm.edu wrote: