I will be out of the office starting 06/24/2014 and will not return until
07/01/2014.
I will have access to my cellphone and will be intermittently checking
email, but am generally distracted. Please contact Leslie Lesch for OMS
issues.
I'm building an iOS application and trying to check if a certificate,
that a https-connection uses, is a EV certificate.
Why?
Wikipedia notes The primary way to identify an EV certificate is by
referencing the Certificate Policies extension field. Each issuer uses a
different object identifier
Bobber bob...@kc0dxf.net wrote on 12/27/2013 02:47:47 PM:
I don't see anywhere that it says expired other than this utility. How
can I verify that it is really expired?
In case you don't trust your openssl install, here is an easy approach
using windows:
1. Select everything between
Kenneth Goldman/Watson/IBM@IBMUS wrote on 11/20/2013 10:37:04 AM:
Encrypt with a private key for integrity purposes: this shows that the
data that was encrypted corresponds to the owner of the key.
Encrypt with a public key for confidentiality purposes: this shows that
the data can only
owner-openssl-us...@openssl.org (Kenneth Goldman/Watson/IBM@IBMUS) wrote on
11/18/2013 10:03:29 AM:
Do not encrypt with a private key. Encrypt with the public key and
decrypt with the private key.
Encrypt with a private key for integrity purposes: this shows that the data
that was encrypted
Dave Thompson dthomp...@prinpay.com wrote on 11/18/2013 05:07:14 PM:
For RSA the private key is at least (d,n), and OpenSSL always generates
the “CRT” form which has half a dozen other elements to allow more
Oh, well if you are going to be *helpful* ...
So our question is how do we extract
Greetings,
Apologies if this has been covered before, but I couldn't find it in a
search.
I'm trying to deploy FIPS 140 validated crypto to a RHEL 5 box as part of
a FISMA covered project.
I think the relevant policy is
Steve Marquess marqu...@opensslfoundation.com wrote on 11/07/2013
09:02:05 AM:
Is there a basis for asserting FIPS 140 validation with
openssl-0.9.8e-26.el5_9.1|(none), or must the original RPM be used?
You'll need to ask Red Hat; it's their proprietary validation. From a
quick glance it