[EMAIL PROTECTED] wrote: > yes, for enrollment, the key pair is generated on the browser. > > For the key recovery, the recovered key is put inside the pkcs12 and need to be imported back to browser. > The server creates the pkcs12 with the recovered key. And this is the only case we create the pkcs#12 on the server side.
How do you get the private-key out of the browser into the server/service so you have it available to package and return to the user. The reverse of pushing the p12 package back-in can use the same method. I'm curious how you do this for the archival copy, might help in developing a non-intrusive recovery method as well. _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
