Hello Taking advantage of this discussion, I'd like to know what interfaces OpenSSL library provides to access certificate/key-pair stored in smart cards, for example to generate digital signatures.
Is it possible to use Microsoft CAPI/CSP aproach and its certificate stores? If not, what can be used considering a client with Windows and IE browser? Thanks a lot. Lucimara -----Mensagem original----- De: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] nome de Dr. Stephen Henson Enviada em: quarta-feira, 24 de marco de 2004 10:08 Para: [EMAIL PROTECTED] Assunto: Re: PKCS#11 and openssl: how to get a certificate onto the smart card? On Tue, Mar 23, 2004, Andreas Feldner wrote: > Hi, > > probably I'm overlooking something obvious: I have a smart card that can be > accessed through a suitable PKCS#11 library and I have a working sort-of-CA > using openssl. I know how to generate key pairs on the smart card and > (hopefully) how to read the public key off the card. But how do I get a > certificate from that? > What do you actually want to do? Do you want to use the private key on the smart card as your CAs private key? Alternatively do you want to use your CA to create a certificate for the smart card? In that case you might want to install the PKCS#11 module in Mozilla and use it to install the certificate. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
