I've created a patch to add a MuscleCard engine to OpenSSL 0.9.7d,
allowing it to access smart cards using the MuscleCard API. It is
located at:
http://www.scs.carleton.ca/~mgold/patches/openssl-add-mcard.patch
This engine implements RSA encryption (signing) and decryption using a
private key stored on a MuscleCard-compatible smart card. It has been
tested with a Cyberflex e-gate 32K Java Card running MUSCLE's
CardEdgeApplet (using the MCardPlugin service for PCSC Lite).
Usage example
-------------
This command will use the MuscleCard engine to create a self-signed
certificate:
openssl req -new -text -sha1 -x509 \
-engine musclecard -keyform engine \
-key "E-Gate 00 00:0:1:1111:/var/ssl/cflex_pub.key" \
-out cacert.pem
The meaning of the key string is as follows:
Use PCSC Lite reader "E-Gate 00 00"
Private key 0
Authenticate with PIN #1, value "1111"
Public key is stored in /var/ssl/cflex_pub.key (to export public
key 1 using muscleTool: "exportkey 1 /var/ssl/cflex_pub.key")
- Michael
pgpJxOwcAXfsT.pgp
Description: PGP signature
_______________________________________________ Muscle mailing list [EMAIL PROTECTED] http://lists.drizzle.com/mailman/listinfo/muscle
