Hello, writing a certificates with opensc-explorer to a TCOS card works, but an additional hex FF is added at the end of the certificate. So you have to create the certificate file on the card being one bit longer than the certificate. Is the additional FF necessary for any application? Wouldn't it be better to leave the certificate as it is?
After writing the certificate with opensc-explorer, you can write the next time without entering the PIN. I suppose, the changed ACL is responsible for this. If I write the certificate with the tool from FlexSecure, you have to enter the PIN before you can change the certificate. Can you set the ACL to the original value using opensc-explorer ? Regards, Johannes _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
