Thank u all for the prompt response. I understand theortically what cross certification is. But what I didnt understand practically how we can achieve.
Cross certification means very brief definition -- cross certify (root CA's) with each other. Practically how it is possible...... 1Q. Assume both parties have self signed certificates (root CA's), how they will cross certify each other? 2Q. For cross certification, If each Root CA send their certificate Requests to each other. How it is possible to cross certify without having any existing CA certificate? 3Q. will Cross certified root certificate contain two signatures (one is self signed signature, other is signature of cross certified CA)? (but as per x509 standards, there will be only one signature part) 4Q. Both root CA's have chain of sub-ca's and issue digital certificates independently. After some time, both root CA's want to establish trust with each other (if they get cross certified), Is there any implication on the existing digital certificates issued by root CA's or will they have to get new certificates? I have no idea at all.... If I am wrong, please correct me. Hi Oscar Jacobsson, I will be very happy if you provide the document (tutorial) on cross certificate work. By seeing ur mail, i got confident that we can achieve/develop cross certification software using OpenSSL. Thanks & Regards, Ravi Prakash B.V. Oscar Jacobsson wrote: > > I guess it depends on exactly what you mean by interdependent CAs. Are > you referring to cross-certification between different CA products, or > were you more interested in cross certification in general? > > I've done a bit cross certification work using OpenSSL for a piece of > software I'm currently working on, so I guess I could hack up a quick > tutorial document if you're interested. I haven't really played around > with any CA products as of late, however, so I can't comment on how > interoprable the stuff I can whip up with OpenSSL is. > > //oscar > > "Ravi Prakash B.V." wrote: > > > > Dear All, > > > > I do not receive any reply for this. > > Any pointers will be appreciated. > > > > Ravi Prakash B.V. > > > > "Ravi Prakash B.V." wrote: > > > > > > Dear all, > > > > > > I want to establish cross certification between two different independent > > > CAs. How is it possible? > > > > > > Any pointers/links/docs for the above. > > > > > > Thanks in Advance, > > > Ravi Prakash B.V. > > > > > > ______________________________________________________________________ > > > OpenSSL Project http://www.openssl.org > > > User Support Mailing List [EMAIL PROTECTED] > > > Automated List Manager [EMAIL PROTECTED] > > > > -- > > I am NOMAD! > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > Development Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] -- I am NOMAD!
begin:vcard n:Venkata Ravi Prakash;Burlagadda tel;cell:98490 30284 tel;home:08644 26681 tel;work:040 6328079(direct) 040 7814515/17/19 extn:387 x-mozilla-html:FALSE org:Tata Consultancy Services;Advanced Technology Centre version:2.1 email;internet:[EMAIL PROTECTED] title:ASE adr;quoted-printable:;;1-2-10, Coramandel House,=0D=0ASardar Patel Road;Secunderabad;AP;500003;India x-mozilla-cpt:;28992 fn:Burlagadda Venkata Ravi Prakash end:vcard
