Yes. No. Maybe. Such a question suggests some possible confusion.
A certificate is a binding of a keypair to an identity. While only the public key is contained in the cert, some proof of possession of the corresponding private key is required. This usually requires a certificate signing request that includes a component signed using that private key. The private key need not be present to the signer, and in fact must not be if non-repudiation is desired. In the case of smart cards and embedded devices, the keypair and CSR are generated and the private key is never exposed. Google the terms 'PKCS#10' 'SPKAC' and 'CSR' - Michael -----Original Message----- From: Mathias Tausig <[EMAIL PROTECTED]> Subj: certificate withou private key Date: Sun 2007 Sep 30 14:33 Size: 459 bytes To: openssl-users@openssl.org Hy! Is it possible to create a certificate with openssl without using the coresponding private key (which is stored in a smartcard) but with the public key only? Mathias ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
