Nelson B wrote:
Emil Assarsson wrote:
Thank you for your quick response :-)
Is there anyway to export just the privatekey as binary?
By itself? In the clear?
That's exactly what NSS is trying to avoid.
me to ;-)
I'm building a small CA and I want to have an escrow for the crypto
certificates.
My plan was to save the key in a separate db-table along with
key properties and encrypt it. But if I could get the key it will
still be possible.
It is possible with a PKCS12 file. Store that.
Maybe I should rethink...
I could create a special cert8.db and key3.db and store the escrow there...
But what about the preformance when hitting 10000+ certs and keys?
Is the database built with index? I guess I must try to know...
(even if I'd like to use common standards when I can.)
PKCS12 is a much more common standard than PKCS8.
--
Nelson B
_______________________________________________
mozilla-crypto mailing list
[EMAIL PROTECTED]
http://mail.mozilla.org/listinfo/mozilla-crypto
