This is documented in the OpenCA manual and it is something I want to get around to trying. The last time I read this section, I noticed that a problem with using the OpenSC/smart card combo as an HSM is that all private key operations must be done sequentially with a password entry for each.
Mike -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Antonio Bonavita Sent: Tuesday, September 25, 2007 10:57 AM To: openca-users@lists.sourceforge.net Subject: [Openca-Users] OpenCA and OpenSC Hello mailing list, I am sorry for my English... I'd like to ask to you a couple of questions... Can I initilize my CA writing CA certificate and private key in my smartcard using OpenCA "ca" web interface and configuring OpenCA in order to use OpenSC? Is it possible to use a certificate and private key already installed in a smartcard in order to make OpenCA can read CA certificate and private key from the smartcard? I have installed OpenSC and the software for the SC reader (pcsc-lite and a specific driver). I have worked with OpenCA (version 0.9.3-rc1) in software certificates and tested some sample CA. OpenSC tools seems to have not problems too :-) Do I only need to edit token.xml file and to start OpenCA daemon in order to work with smartcard? Do I need something more? I appreciate a lot your answers/suggestions and thank you very much. Best regards, Antonio ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ Openca-Users mailing list Openca-Users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-users ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ Openca-Users mailing list Openca-Users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-users
