matheus ribeiro wrote:
> Hi all, Im trying to use muscleTool for key generation and signing.
> 
> After formating, I generate the key using the following option:
> muscleTool [MuscleCard Applet] > genkeys rsacrt 2048
> 
> ***************** Key Generation Routine *****************
>        using the RSA CRT algorithm for generation.
> **********************************************************
> 
> Enter the public key number
> 'a' aborts this query.
> Enter key number : 1
> 
> Enter the private key number
> 'a' aborts this query.
> Enter key number : 0
> 
> Enter the ACL for reading the public key
> Example: 0x0002 for user PIN #1
> 'a' aborts this query.
> Enter ACL mask : 0x0002
> 
> Enter the ACL for deleting the public key
> Example: 0x0002 for user PIN #1
> 'a' aborts this query.
> Enter ACL mask : 0x0002
> 
> Enter the ACL for using the public key
> Example: 0xFFFF for all users
> 'a' aborts this query.
> Enter ACL mask : 0xFFFF
> 
> Enter the ACL for reading the private key
> Example: 0x0000 for nobody
> 'a' aborts this query.
> Enter ACL mask : 0x0000
> 
> Enter the ACL for deleting the private key
> Example: 0x0002 for user PIN #1
> 'a' aborts this query.
> Enter ACL mask : 0x0002
> 
> Enter the ACL for using the private key
> Example: 0x0002 for user PIN #1
> 'a' aborts this query.
> Enter ACL mask : 0x0002
> 
> Are you sure ?
> 0. Abort this selection.
> 1. YES
> 2. NO
> 
> Choose (0-2): 1
> Generating keys [********************************************] : GenKeys
> Success.
> 
> But this is the final result I get from muscleTool output:
> muscleTool [MuscleCard Applet] > listkeys
> 
>         Key Type  Key Num SIZE    READ   WRITE     USE
>  ---------------  ------- ----  ------  ------  ------
>  RSA PRIVATE CRT        0 2048  ALWAYS  PIN #1  PIN #1
>       RSA PUBLIC        1 2048  PIN #1  PIN #1   NEVER
> ListKeys Success.
> 
> In the table above, the public keys can NEVER be used and the private
> key can ALWAYS be read. But when I was asked for the public key ACL, i
> used 0xFFFF. And when I was asked for the private key, I used 0x0000.

Oh, sorry. May example for the meaning was wrong. 0xFFFF means nobody
and 0x0000 means anybody is allowed. I will update the SVN later. I hope
you had no unconveniences because of this.

By the way ... are you using Windows or some Unix?

Karsten

> 
> Thanks
> Matheus
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> Muscle mailing list
> [email protected]
> http://lists.drizzle.com/mailman/listinfo/muscle

_______________________________________________
Muscle mailing list
[email protected]
http://lists.drizzle.com/mailman/listinfo/muscle

Reply via email to