[EMAIL PROTECTED] wrote:
> I am trying to understand the Netscape PSM key generation
> method.
For future reference, Netscape PSM uses a proprietary crypto library
(RSA BSAFE); the version of PSM on mozilla.org does not use this, but
rather uses an open source crypto library. So, depending on exactly what
you're looking for, the Mozilla PSM code may not correspond to exactly
what is happening in Netscape PSM.
> I have downloaded the open source code from
> mozilla.org, but the meat of the key generation algorithm
> is nowhere to be found. I have seen references to a file
> called key.h which contains the key generation routine, and
> is supposedly compiled into a library called cryptohi, but
> I can't find any of these files anywhere either.
Depending on how you check out the Mozilla code, you may or may not get
the code for PSM or for the Network Security Services (NSS) library
which it uses for the underlying SSL and crypto operations.
For more information, see
http://www.mozilla.org/projects/security/pki/
and in particular
http://www.mozilla.org/projects/security/pki/src/download.html
You can browse the PSM and NSS code online at
http://lxr.mozilla.org/mozilla/source/security/
> Does anyone have any information about the key generation
> method used in Netscapes PSM, or know where I can find
> source code, or an algorithm description?
If you're looking for how RSA keys get generated in the Mozilla version
of PSM/NSS, I suspect you'll want to look at the following file:
http://lxr.mozilla.org/mozilla/source/security/nss/lib/freebl/rsa.c
Note that this is NOT the same code used in Netscape PSM.
Frank
P.S. Followups directed to netscape.public.mozilla.crypto, which is
where the PSM and NSS developers hang out.
--
Frank Hecker work: http://www.collab.net/
[EMAIL PROTECTED] home: http://www.hecker.org/
