On Saturday, February 7, 2015 at 12:02:55 PM UTC-5, nvanwyen wrote:
>
> .
> I'm new to Crypto++, this group and cryptography in particular. I am
> trying to open a password protected pkcs12 file, which has the private and
> public keys. I'd like to extract the public and private keys for signing
> data with RSA or ECDSA.
>
> For example, I'm trying to figure out the equivalent of the following ...
>
> # export the private key
> openssl pkcs12 -in mycerts.pfx -password pass:"${pw}" -nocerts -nodes |
> openssl rsa > private.key
>
>
> and ...
>
> # export the public key
> openssl pkcs12 -in mycerts.pfx -password pass:"${pw}" -clcerts -nokeys |
> openssl x509 -pubkey -noout > public.key
>
>
> finally ...
>
> # sign some data
> openssl dgst message.txt > hash.txt
> openssl dgst -hex -sign private.key hash.txt
> openssl smime -sign -inkey private.key -signer public.key -in message.txt
>
>
> Any help and/or advice on this would be greatly appreciated, so thank you
> in advance for taking the time to help me out.
>
Currently you can't do it with Crypto++. The library lacks the container
support (like X.509 and PKCS11).
Maybe Geoff Beier has some ideas. I think he has a working X.509
implementation. He may have something for PKCS11.
I'm also interested in adding support for X.509 and PKCS11, but I don't
have a clear design or the spare cycles to implement it.
Jeff
--
--
You received this message because you are subscribed to the "Crypto++ Users"
Google Group.
To unsubscribe, send an email to [email protected].
More information about Crypto++ and this group is available at
http://www.cryptopp.com.
---
You received this message because you are subscribed to the Google Groups
"Crypto++ Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
