> "Shobana.V" wrote:
>
> sir,
> i am akila working on a security project.i am using the openca project....
> I need to know more about the way the certificates are created and how they are
> stored , where the LDAP comes into picture.please help me out and help me
> with some more detailed documentations.
Well, I don't have much time, right now, anyway I'll try to be as clear as possible.
1. Certificates are created with the help of the OpenSSL
crypto library - the openssl frontend command is used
with the hel of the OpenCA::OpenSSL PERL module to provide
base certificate and crypto (generation, conversion, etc...);
2. Currently certificates are stored using DBMs. Base support is
provided by PERL and an additional OpenCA::DB provide more
complex and higher level functions ( such as storage, retrival ).
This helps handling easily with different types of data ( such
as requests, certificates, crls );
3. LDAP is used to prvide an easy way to access certificates using
browsers. Indeed most browsers support Directory search, so you
can be able to retrieve a certificate directly from the LDAP
server. LDAP is obviously an add-on used only on the RAServer
( and obviously by users );
C'you,
Massimiliano Pala ([EMAIL PROTECTED])
S/MIME Cryptographic Signature
