Thank you for your quick response :-)
Is there anyway to export just the privatekey as binary?
By itself? In the clear? That's exactly what NSS is trying to avoid.
I'm building a small CA and I want to have an escrow for the crypto certificates.
My plan was to save the key in a separate db-table along with
key properties and encrypt it. But if I could get the key it will still be possible.
It is possible with a PKCS12 file. Store that.
(even if I'd like to use common standards when I can.)
PKCS12 is a much more common standard than PKCS8.
-- Nelson B
_______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
