Thanks, so let me get this straight.
1. openSSL PEM format for importing and exporting keys is a b64 encoding of DER
encoded public and private keys, yes/no.
Does openSSL use traditional PEM encoded form (PKCS#5 variant) for anything?
Thanks for your help.
Baber
:)
>>> [EMAIL PROTECTED] 08/29/00 06:57PM >>>
Baber Amin wrote:
>
> Need info on the PEM format used by openSSL for keys.
> Is it just b64 encoding of der and other pkcs formats or something more? Any
>pointers to implementation and/or decoding would be appreciated?
>
Try reading the docs to the applications, rsa, dsa and pkcs8 they give
more info and the source helps.
Mostly it is just b64 encoded DER stuff. OpenSSL understands PKCS#8 and
can generate or convert to that format in both encrypted and unencrypted
forms.
The only undocumented form is the 'traditional' PEM encoded encrypted
form which is a weird PKCS#5 variant with IV and salt stuff in the
header but the various utilities and functions can convert that.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
