Hello, I'm comparing different libraries to verify X509 certificate chains. I had some issues to find how to use NSS to perform this task. At the end, I managed to get a working code with one certificate chain. You can find the code in this question <http://stackoverflow.com/questions/34982796/how-to-parse-and-validate-certificates-with-nss> I asked on stack overflow. I would like to know if the code I wrote is the correct way to verify a certificate chain using NSS, and if there are other parameters to customize the verify algorithm which can be set (i.e. a flag to enable policy check etc.). If the code is correct, I suggest it could be added to NSS examples on the documentation.
Thank You, Nicholas -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto