yes, for enrollment, the key pair is generated on the browser. For the key recovery, the recovered key is put inside the pkcs12 and need to be imported back to browser. The server creates the pkcs12 with the recovered key. And this is the only case we create the pkcs#12 on the server side.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Sascha Kiefer Sent: Thursday, March 24, 2005 10:03 AM To: [email protected] Subject: Re: Access to the certificate store using javascript Hi. from the security point of view, you should not create the PKCS#12 on the server but let the browser generate the private key. On Browsers != IE you can use the <keygen> tag in an html form for doing that kind of stuff. <[EMAIL PROTECTED]> schrieb im Newsbeitrag news:[EMAIL PROTECTED] > If we have PKCS#12, generated on the server. > We're sending it to the Mozilla browser via HTTP. > The question is: what how the browser import this PKCS#12 into Mozilla > cert store automaticall (without going to "Tools -> Options -> Advanced, > then scroll down to 'certificates'". > > I think the server needs to put some Java script in the form (that > contains PKCS#12), so that it can invoke some Mozilla API to deal with > Mozilla's cert store. > > Has anyody tried this? > Thanks > > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Behalf Of Ram A M > Sent: Thursday, March 24, 2005 8:46 AM > To: [email protected] > Subject: Re: Access to the certificate store using javascript > > > To browser the certificate store in a FireFox: > Tools -> Options -> Advanced, then scroll down to 'certificates'. > > _______________________________________________ > mozilla-crypto mailing list > [email protected] > http://mail.mozilla.org/listinfo/mozilla-crypto > > _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
