Why no try the open source PKI book as a starter...
http://ospkibook.sourceforge.net/docs/OSPKI-2.4.7/OSPKI-html/ospki-book.htm Cheers, Tomas On 09/24/2010 10:13 PM, Hasan Rezaul-CHR010 wrote:
Hi All, Would anyone kindly point me to literature that CLEARLY explains exactly how: Certificates and CRLs may be used in conjunction such that certificate CSRs are generated, signed by an authority, then signed certs downloaded and being used on a system. At a later time, the certificate is revoked in the CRL, the CRL.pem file is downloaded on the system, and then the corresponding cert becomes unusable due to its mention in the CRL. Is there a good place for me to educate myself on this whole mechanism, and a place where it shows exactly how to implement all this with examples... Oh I am running on Linux, with openssl 0.9.8g. Thanks a bunch in advance. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
