Robert W Weaver is out of the office.

I will be out of the office starting 06/24/2014 and will not return until 07/01/2014. I will have access to my cellphone and will be intermittently checking email, but am generally distracted. Please contact Leslie Lesch for OMS issues.

Re: How to check if certificate is a EV-SSL certificate?

I'm building an iOS application and trying to check if a certificate, that a https-connection uses, is a EV certificate. Why? Wikipedia notes The primary way to identify an EV certificate is by referencing the Certificate Policies extension field. Each issuer uses a different object identifier

Re: Verisign Problem with smtp tls

Bobber bob...@kc0dxf.net wrote on 12/27/2013 02:47:47 PM: I don't see anywhere that it says expired other than this utility. How can I verify that it is really expired? In case you don't trust your openssl install, here is an easy approach using windows: 1. Select everything between

Re: how to extract the private key out of the KEY.PEM

Kenneth Goldman/Watson/IBM@IBMUS wrote on 11/20/2013 10:37:04 AM: Encrypt with a private key for integrity purposes: this shows that the data that was encrypted corresponds to the owner of the key. Encrypt with a public key for confidentiality purposes: this shows that the data can only

Re: how to extract the private key out of the KEY.PEM

owner-openssl-us...@openssl.org (Kenneth Goldman/Watson/IBM@IBMUS) wrote on 11/18/2013 10:03:29 AM: Do not encrypt with a private key. Encrypt with the public key and decrypt with the private key. Encrypt with a private key for integrity purposes: this shows that the data that was encrypted

RE: how to extract the private key out of the KEY.PEM

Dave Thompson dthomp...@prinpay.com wrote on 11/18/2013 05:07:14 PM: For RSA the private key is at least (d,n), and OpenSSL always generates the “CRT” form which has half a dozen other elements to allow more Oh, well if you are going to be *helpful* ... So our question is how do we extract

RHEL rpm and FIPS validation

Greetings, Apologies if this has been covered before, but I couldn't find it in a search. I'm trying to deploy FIPS 140 validated crypto to a RHEL 5 box as part of a FISMA covered project. I think the relevant policy is

Re: RHEL rpm and FIPS validation

Steve Marquess marqu...@opensslfoundation.com wrote on 11/07/2013 09:02:05 AM: Is there a basis for asserting FIPS 140 validation with openssl-0.9.8e-26.el5_9.1|(none), or must the original RPM be used? You'll need to ask Red Hat; it's their proprietary validation. From a quick glance it