"Reddie, Steven" wrote:
>
> I'm not clear on the problem here (I'm asking on behalf of someone). They
> claim that keys created with OpenSSL are not useable with BSAFE. They are
> also calling them BER keys. My understanding is that DER, being a subset of
> BER, is used for encoding all keys. Therefore a DER file is a BER file, and
> OpenSSL shouldn't have a problem with them. Are there any known
> issues/workarounds for dealing with BSAFE?
>
It depends on the format BSAFE wants. "BER keys" isn't a complete
description. OpenSSL supports several formats, PKCS#1, PKCS#8 (encrypted
and unencrypted v1.5 and v2.0) and PKCS#12. It also uses the old SSLeay
encrypted private key format which is non standard.
Perhaps converting the key to PKCS#8 format would work?
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
