Emil Assarsson wrote:
I'm building a small CA and I want to have an escrow for the crypto
certificates.
My plan was to save the key in a separate db-table along with
key properties and encrypt it. But if I could get the key it will
still be possible.
It is possible with a PKCS12 file. Store that.
Maybe I should rethink...
I could create a special cert8.db and key3.db and store the escrow there...
But what about the preformance when hitting 10000+ certs and keys?
Is the database built with index? I guess I must try to know...
I'm merely suggesting that you store the PKCS12 file/data in the place
where you were thinking of storing the PKCS8 file/data.
_______________________________________________
mozilla-crypto mailing list
[EMAIL PROTECTED]
http://mail.mozilla.org/listinfo/mozilla-crypto
