Hi OpenSSL community, I in the process of implementing CMP (at first the client side) as extension to OpenSSL. This also includes CRMF (RFC 4211) as CMP makes use of this.
While I'm doing this as part of my working student job at Nokia Siemens Networks, I have permission to release the code under a license enabling it to be included in mainstream OpenSSL, what I'd really like to achieve. Now I reached a point where basic functionallity is available. I'm able to do "Initial Registration/Certification", i.e. obtaining a certificate for an end entity not having prior contact to the CA. Also doing a "Key Update", i.e. requesting a certificate for a new key, is implemented. Adding more functionallity described by the RFC will be little work, since most of the ASN.1 definitions are implemented. If anyone is interested in looking at the code, suggesting improvements (e.g. of the API) or participating in any other ways, please let me know. I'd be a pleasure to send you the a full package of the code, including a simple client and server (using Cryptlib so far). The full package including all needed code is about 5MB - if your mailserver does not allow attachments of this size we'll figure something out. Best regards, Martin ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
