Hi,
We have an existing application that uses OpenSSL for
authentication and encryption between two of our custom built
applications. We have this already deployed and one of our customers has
asked if they can use a Hardware based Token + PKI Server to
authenticate these applications. I was curious if there is anyway to do
this without changing our application. Currently out application reads
the CA + cert/key from the filesystem from three separate pem files. I
was hoping there might be some way to have a process run that would fake
these files and then really obtain the cert from a PKI server and the
key from the Token ( That is how tokens work right? If not than please
enlighten me). Basically they want to stick there token in and has the
processes authenticate and take the token out and have them fail. I was
also wondering if there might be a PKI solution that could write out PEM
files upon acceptance of a token so that our application can still read
files. The end goal is to not change our application now but to offer
something as a 'workaround' until we integrate other PKI solutions into
our product. Thank you for any help.
-
Andrew T. Finnell
Active Solutions L.L.C
[EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
