On 08/23/2010 12:00 AM, Brian Smith wrote:
> Nelson B Bolyard wrote:
>
>> It's all about making it difficult enough that people start to ask "why is
>>
> this
>
>> obviously more difficult than the casual developer thinks it must be?"
>>
> Thank you. That makes a lot of sense. My un
Nelson B Bolyard wrote:
> It's all about making it difficult enough that people start to ask "why is
this
> obviously more difficult than the casual developer thinks it must be?"
Thank you. That makes a lot of sense. My understanding is that there doesn't
really need to be a difference in the way
On 2010-08-22 20:46 PDT, Nelson B Bolyard wrote:
> On 2010-08-22 16:44 PDT, Brian Smith wrote:
>> When NSS Softoken is in FIPS mode, it refuses to create keys with
>> C_CreateObject.
>
> What means that it refuses to import secret or private key material
Sorry, that should have read: Which mean
On 2010-08-22 16:44 PDT, Brian Smith wrote:
> When NSS Softoken is in FIPS mode, it refuses to create keys with
> C_CreateObject.
What means that it refuses to import secret or private key material
that is being kept "in the clear" outside of the security module boundary
into the security module,
When NSS Softoken is in FIPS mode, it refuses to create keys with
C_CreateObject. The same method works fine in regular (non-FIPS) mode. But,
it is possible to achieve the exact same effects using either any of the
procedures outlined below. So, what is the motivation for prohibiting the
key creati
5 matches
Mail list logo