Peter Williams schrieb:
out of interest, what simple win32 openssl command is required to create
the file used by GPShell's put_dm_keys?
I tried the obvious choice, but it GPShell PEM_read_PUBKEY call fails to
read back the public key from this keypair -
genrsa -out c:\foo.pem -des -passout pass:password 1024
No, with this you only create a private keypair DES encrypted. The
public key is implicitly known.
After generating the private key extract the public key with this:
openssl rsa -in foo.pem -pubout -out foopub.pem
Regards,
Karsten
*From:* Peter Williams <mailto:[EMAIL PROTECTED]>
*Sent:* Friday, April 04, 2008 5:54 PM
*To:* MuscleCard Mailing List <mailto:muscle@lists.musclecard.com>
*Subject:* [Muscle] load file DAP
1. Has anyone used GPShell to load an RSA public key into an _issuer's_
security domain of a 201 card, so one can use the GPShell to send a DAP
hash and signature for the load file?
2. has anyone tested the use of SHA1 by itself for a LOAD DAP?
3 If I half remember right, only a security domain OTHER than the card
manager SD can verify either a DESCBC or an RSA DAP (given its knows the
verification key, and knowledge that the signature is either RSA or DESCBC).
------------------------------------------------------------------------
_______________________________________________
Muscle mailing list
Muscle@lists.musclecard.com
http://lists.drizzle.com/mailman/listinfo/muscle
------------------------------------------------------------------------
_______________________________________________
Muscle mailing list
Muscle@lists.musclecard.com
http://lists.drizzle.com/mailman/listinfo/muscle
_______________________________________________
Muscle mailing list
Muscle@lists.musclecard.com
http://lists.drizzle.com/mailman/listinfo/muscle