matheus ribeiro wrote: > Hi all, Im trying to use muscleTool for key generation and signing. > > After formating, I generate the key using the following option: > muscleTool [MuscleCard Applet] > genkeys rsacrt 2048 > > ***************** Key Generation Routine ***************** > using the RSA CRT algorithm for generation. > ********************************************************** > > Enter the public key number > 'a' aborts this query. > Enter key number : 1 > > Enter the private key number > 'a' aborts this query. > Enter key number : 0 > > Enter the ACL for reading the public key > Example: 0x0002 for user PIN #1 > 'a' aborts this query. > Enter ACL mask : 0x0002 > > Enter the ACL for deleting the public key > Example: 0x0002 for user PIN #1 > 'a' aborts this query. > Enter ACL mask : 0x0002 > > Enter the ACL for using the public key > Example: 0xFFFF for all users > 'a' aborts this query. > Enter ACL mask : 0xFFFF > > Enter the ACL for reading the private key > Example: 0x0000 for nobody > 'a' aborts this query. > Enter ACL mask : 0x0000 > > Enter the ACL for deleting the private key > Example: 0x0002 for user PIN #1 > 'a' aborts this query. > Enter ACL mask : 0x0002 > > Enter the ACL for using the private key > Example: 0x0002 for user PIN #1 > 'a' aborts this query. > Enter ACL mask : 0x0002 > > Are you sure ? > 0. Abort this selection. > 1. YES > 2. NO > > Choose (0-2): 1 > Generating keys [********************************************] : GenKeys > Success. > > But this is the final result I get from muscleTool output: > muscleTool [MuscleCard Applet] > listkeys > > Key Type Key Num SIZE READ WRITE USE > --------------- ------- ---- ------ ------ ------ > RSA PRIVATE CRT 0 2048 ALWAYS PIN #1 PIN #1 > RSA PUBLIC 1 2048 PIN #1 PIN #1 NEVER > ListKeys Success. > > In the table above, the public keys can NEVER be used and the private > key can ALWAYS be read. But when I was asked for the public key ACL, i > used 0xFFFF. And when I was asked for the private key, I used 0x0000.
Oh, sorry. May example for the meaning was wrong. 0xFFFF means nobody and 0x0000 means anybody is allowed. I will update the SVN later. I hope you had no unconveniences because of this. By the way ... are you using Windows or some Unix? Karsten > > Thanks > Matheus > > > ------------------------------------------------------------------------ > > _______________________________________________ > Muscle mailing list > [email protected] > http://lists.drizzle.com/mailman/listinfo/muscle _______________________________________________ Muscle mailing list [email protected] http://lists.drizzle.com/mailman/listinfo/muscle
