Nelson B Bolyard wrote:
> Howard Chu wrote, On 2008-08-10 14:13:
>
>> The issue isn't about a specific file format, it's about overall
>> usability. Ignoring the issue of hiding things in a fragile DB the
>> problem is that it's a one-shot monolithic configuration. A process may
>> only call NSS_In
Howard Chu wrote, On 2008-08-10 14:13:
> The issue isn't about a specific file format, it's about overall
> usability. Ignoring the issue of hiding things in a fragile DB the
> problem is that it's a one-shot monolithic configuration. A process may
> only call NSS_Init once, and provides a singl
Eddy Nigg wrote:
> Well, consider that people are familiar with OpenSSL commands and new
> users get quickly used to it. This "might" be what others are looking
> for when checking out NSS and other libraries (and decide to forget
> about it).
Look into the other thread started by me "Creating
Nelson B Bolyard wrote:
> Howard Chu wrote, On 2008-08-10 03:30:
> When one considers all the important reasons to choose a crypto
> implementation, support for one file format which is not used in any
> standard protocols (e.g. TLS, SMIME) doesn't seem like a biggie.
The issue isn't about a speci
Nelson B Bolyard:
> Howard Chu wrote, On 2008-08-10 03:30:
>> Following on from the discussion in
>> https://bugzilla.mozilla.org/show_bug.cgi?id=292127 today I took a look
>> at what would be involved in adding NSS support to OpenLDAP. Aside from
>> the lack of hassle-free PEM support (which it ap
Howard Chu wrote, On 2008-08-10 03:30:
>> Nelson B Bolyard wrote:
>>> Someone could write a PKCS#11 module that uses PEM files as its storage.
>>> It wouldn't be FIPS validated, at least not initially.
>
> In that case, there's even less motivation to adopt NSS, since OpenSSL is
> moving ahead
Although the following document was written for the support of schemes
like KeyGen2 ("Universal Provisioning") and WASP ("WebForm Signing"),
I believe it could probably work equally well for Information Card
selelctors, IETF's DSKPP, and similar.
http://webpki.org/papers/web/XMLBrowserExtensionSch
Thanks Nelson for your reply.
Yes, I was producing cert8.db.
I used your link to recreate the certificates,
but still got the same exception as before when fips mode was enabled in the
stage of importing CA certificate file into server database.
"certutil: could not add certificate to token or dat
Robert Relyea wrote:
> Nelson B Bolyard wrote:
>> Joe Orton wrote, On 2008-07-28 16:09:
>>> On Sat, Jul 26, 2008 at 05:17:56PM -0700, Nelson Bolyard wrote:
Daniel Stenberg wrote, On 2008-07-26 13:45:
> As a user of OpenSSL, NSS, yassl and GnuTLS I can certainly agree that
> GnuTLS has
9 matches
Mail list logo
