You should use a standard certificate and add your own extensions. Don't
try to create your own certificate format -- there's no need. Then you
just implement your own verify callback that looks for those extensions
and their value.
/r$
--
Visiting Member, IBM Academy
STSM, DataPower Chief Programmer
WebSphere DataPower SOA Appliances
http://www.ibm.com/software/integration/datapower/
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [email protected]
