Moin Johnny,
Where can I find information about how are created the keys, which types of requests make a serverside generation of keys and which types of requests make a clientside generation of keys?
To find out you have to look at the code...
Its like you guessed,
User-Certs are generated client-side for the IE/Netscape Type and Serversided for the BasicReq.
For PKCS#10 Requests the key never gets in touch with OpenCA or the browser - you upload a CSR which contains a public key that is signed, the key is generated somewhere else
I'm using versions 0.9.1.x. which kind of keys generation is made by the automatic browser detection?
Client
case, in the clientside requests where are located the
keys? how are them generated (javascript or
something)?
Both Browsers have a build into crypto-engine that is accessibe via javascript/vbscript - we use this - have a look at the includes js/... files on the request pages.
The keys are stored internally by the browser.
Does it matters if the client uses an And
where in the oposittecase (serverside generation)?
Sorry I dont understand the question...
Is there a document with all this information?
ouch - I dont think so, perhaps somewhere in the dev-docs
Oliver
-- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72
smime.p7s
Description: S/MIME Cryptographic Signature
