Basically, I think that Mohammed is correct.
Typically, the card generates a public/private key pair. It holds
the private key inside the card, and exports the public key. The
public key is put into a certificate, which is signed by the
certificate authority (CA), and then loaded back on the card.
In theory, I suppose you could use a smart card as a CA signer.
A programmable card like a Java card could build the X509
certificate, but I'm not sure it buys any greater security.
> Date: Fri, 29 Dec 2000 16:18:44 +0530
> From: "Mohammed SADIQ" <[EMAIL PROTECTED]>
>
> I don't think any card has the feature you described. You have to
> format/prepare the certificate outside the card and store the result
> in the card.
>
> >From: Ramkumar.R [mailto:[EMAIL PROTECTED]]
> >Sent: Friday, December 29, 2000 2:39 PM
> >
> >How to generate digital certificates of X509 v3 standard
> >using a smartcard. In OCF APIs is there any methods for this.
> >
> >Which are the cards that support the above?
--
Ken Goldman [EMAIL PROTECTED] 914-784-7646
---
> Visit the OpenCard web site at http://www.opencard.org/ for more
> information on OpenCard---binaries, source code, documents.
> This list is being archived at http://www.opencard.org/archive/opencard/
! To unsubscribe from the [EMAIL PROTECTED] mailing list send an email
! to
! [EMAIL PROTECTED]
! containing the word
! unsubscribe
! in the body.
