On Fri, Jul 09, 1999 at 01:17:53PM +0200, Oliver Floericke wrote:
> In the protocol of SSL there is this certificate_verify_message which is
> send after right the client has send its certificate. The message is
> composed of a combination of the recently exchanged messages, the master
> secret and some padding bytes. This data is somehow scrambled by MD5 and
> SHA. Ok.
>
> But what is the real point of this message at all? In the SSl 3.0 draft,
> page 30, it is written that this is '...to provide explicit verification of
> a client certificate'. But how does this message verifies this? As far as I
> know is that both signing functions are working without any key (am I
> right?)
No, the signing functions work with keys (the signature format is
defined in some other section of the specification).
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
