Brian Thomas wrote: > The subject of the requirement is to verify that "malformed" or > "incomplete" certificates cannot be loaded on to the card.
As you may know, X.509 is a low level standard, so what is considered malformed in one circumstance may be unproblematic in another. Much more specific requirements are needed in order to say unanimous pass or fail. As for incomplete, that suggests to me going beyond a technical requirement, ie. does the CN actually include all subject's middle initials? Malformed could probably go beyond technical as well. Not a simple task to translate fairlytale requirements (if they are) into something actually meaningful in the real world. Basically someone else f-ed up and you have the delightful choice of cleaning it all up and starting over, or cutting as many corners as possible to work on what the project is actually about. You have my sympathy. :\ //Peter _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
