Wan-Teh Chang wrote:
> [EMAIL PROTECTED] wrote:
> > I've followed the build instructions on checkout and building NSS
> > (after giving up on getting it to build the cmd utils inside my main
> > mozilla tree). It also compiles fine, but I cannot seem to actually run
> > the cmd utils.
> >
> > I've
[EMAIL PROTECTED] wrote:
> Wan-Teh Chang wrote:
> > [EMAIL PROTECTED] wrote:
> > > I've followed the build instructions on checkout and building NSS
> > > (after giving up on getting it to build the cmd utils inside my main
> > > mozilla tree). It also compiles fine, but I cannot seem to actually
Hopefully these will be relatively easy questions for you guys. I'm
asking about the internal softtoken.
Is there a max length for a cert nickname?
What is the min/max password length when the module is operating in FIPS
140-2 mode?
I've read in the past somewhere something about needing to
Hi,
sorry for repeat the question, but i really didn't find a way to solve
this problem.
I have a problem when i try to update present token list.
I can show a list with all the tokens, but when i change, remove or
insert another token and i try to reload the list, i get only the same
token
Hi there,
Are you have any documentation about using and design s/mime library.
Thanks,
Alexander
___
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
I'm using JSS 3.4 (with NSS 3.10) in a Java application. The Java app
cannot see token events (such as smart card insertions and removals)
unless I exit the app and restart. The public JSS methods
PK11Module.getTokens() and CryptoManager.getModules() return JSS's
snapshot of the tokens and module
sh wrote:
Hi there,
Are you have any documentation about using and design s/mime library.
We have very little documentation about our S/MIME library.
Here is what I find.
1. http://www.mozilla.org/projects/security/pki/nss/smime/
The product plan/product requirements document of the S/MIME l
Alexander wrote:
> Are you have any documentation about using and design s/mime library.
There's almost no documentation on that library. :(
But there is an example program that shows how to use it.
Studying the source code of that example program is probably the best way
to figure out how to us
shinigami wrote:
> How I create a Virtual Tokens for my aplication?
> The Firefox have 4 ikeyVirtualReaders used for update and detect when a new
> usb token is inserted or removed from usb port.
> How I can do it too?
The iKey virtual readers are features of a PKCS#11 module offered by the
make
ben wrote:
> I installed my PKCS11 module into the Firefox browser. I can see my
> certs on my token from the Certificates Manager of the browser.
> Turn on the option -- "Ask me evey time". Then I started a Client Site
> SSL connection to my web server. The browser popped up the cert
> selection
David Stutzman wrote:
> Hopefully these will be relatively easy questions for you guys. I'm
> asking about the internal softtoken.
>
> Is there a max length for a cert nickname?
I think NSS imposes no maximum. I suspect that values longer than
about 15KB will not work. :) In practice the nam
Nelson B wrote:
David Stutzman wrote:
Hopefully these will be relatively easy questions for you guys. I'm
asking about the internal softtoken.
Is there a max length for a cert nickname?
I think NSS imposes no maximum. I suspect that values longer than
about 15KB will not work. :)
Igor Delacroix wrote:
> I have a problem when i try to update present token list.
>
> I can show a list with all the tokens, but when i change, remove or
> insert another token and i try to reload the list, i get only the same
> tokens that i had before the insertions and changes.
>
> how I ca
shinigami wrote:
> I'm using JSS 3.4 (with NSS 3.10) in a Java application. The Java app
> cannot see token events (such as smart card insertions and removals)
> unless I exit the app and restart. The public JSS methods
> PK11Module.getTokens() and CryptoManager.getModules() return JSS's
> snapsh
glen beasley wrote:
Nelson B wrote:
What is the min/max password length when the module is operating in
FIPS 140-2 mode?
Wan-Teh will have to answer that. I think it has changed recently.
It seems that the requirements have changed since the last time NSS was
FIPS 140 evaluated, or at lea
Are you two working together, by any chance?
Yes, in the same project. Sorry for duplicated post. A communication
mistake.
Now I will go to try explain my situation.
I´m developing a java aplication. My aplication already list the tokens and
modules when they are inserted before aplication start
Nelson,
Thanks a lot for your help.
In my case both the attributes CKA_ID and CKA_LABEL are set to a same
unique name regardless whether the cert subject name is unique or not.
For the corresponding private key the CKA_ID and CKA_LABEL attributes
are also set to the same value as that of CKA_ID a
glen beasley wrote:
> Nelson B wrote:
>> David Stutzman wrote:
>>> What is the min/max password length when the module is operating in FIPS
>>> 140-2 mode?
>>>
>> Wan-Teh will have to answer that. I think it has changed recently.
>> It seems that the requirements have changed since the last
Nelson B wrote:
glen beasley wrote:
In FIPS mode, the NSS cryptographic module imposes the following
requirements on the password.
* The password must be at least seven characters long.
* The password must consist of characters from three or more
character classes. We define five cha
ben wrote:
> In my case both the attributes CKA_ID and CKA_LABEL are set to a same
> unique name regardless whether the cert subject name is unique or not.
> For the corresponding private key the CKA_ID and CKA_LABEL attributes
> are also set to the same value as that of CKA_ID and CKA_LABEL
> att
Wan-Teh Chang wrote:
> Nelson B wrote:
>> That's what we used to do. But IINM, Wan-Teh decided to abandon that
>> because of a new interpretation of the rules from our test lab.
>
> I didn't abandon that. When I proposed we should only
> impose the length requirement to simplify the password
>
Nelson,
Thanks for your help. Here are my anwsers for your asking:
Some questions:
a) When you see the dialog for choosing a certificate, do the names of
the certs that appear in that dialog bear the strings from your
CKA_LABEL
attributes?
I think yes. Actually the string in my CKA_LABEL attr.
Hi!
what i am trying to do, is export the web sites certificates that are listed in
the Certificate Manager of Firefox and store them into an other file. I have
tried the certutil command in the command prompt but i get the message that it
is not a recognizable command.
Any ideas what should i
Nelson,
Thanks for your help. Here are my anwsers for your asking:
Some questions:
a) When you see the dialog for choosing a certificate, do the names of
the certs that appear in that dialog bear the strings from your
CKA_LABEL attributes?
I think yes. Actually the string in my CKA_LABEL a
[EMAIL PROTECTED] wrote:
Thanks for testing! I found out why it failed. I am using Visual Studio
2005, and it apparently needs the .manifest files too. Adding that to
the exported items fixed the problem.
great thanks to MS for the easy to understand error
messages
Filed this btw:
https://bu
25 matches
Mail list logo
