hi friends,
i have developed software(client & server programs using C lang) for
mutual authentication between client and server using OpenSSL APIs on Linux
O.S.it's working fine.
Now, i want to do cross certrification of two root CAs & verification of
client & server certificates
I have setup two different organizations using SSL with a CA certificate
for each organization, CA1c1 and CA2c1. Originally, they were
relatively independent and SSL was only used internally to each
organization. Now that they are collaborating more, I am having to find
a solution to setting
>
> The US Government has a project to do this for some of their (Defense
> Dept?) PKI's. I forget the name. Put a new mega-root and have everyone
> cross-certify with that root. You still get full paths everywhere, but
> it's O(2N) instead of O(N**2) certifications.
Bridge CA.
___
> How chaining is different then cross-certification ?.
Chaining is a single link from an End Entity up to a root, or trust
anchor:
A --> CA1 --> CA2 --> ... --> Root
(where a-->b means "B has signed the certificate for A")
Cross-certification is when y
Why cross-certify?
Imagine two organizations, each with their own root, that have now
merged.
/r$
--
Zolera Systems, Your Key to Online Integrity
Securing Web services: XML, SOAP, Dig-sig, Encryption
http://www.zolera.com
_
I would like to add to the original question.
How chaining is different then cross-certification ?.
If cross-certification means then two CAs sign each other then how we can
scale to a scenario of more than two CAs in a fully meshed
cross-certification model ?.
Thanks for a help.
Tariq Habib
On Mon, 22 Oct 2001, Ravi Prakash B.V. wrote:
> Dear All,
>
> I do not receive any reply for this.
> Any pointers will be appreciated.
What is the application that could benefit from cross certification?
Alternatively, what is the logic that requires cross certification?
than
Dear All,
I do not receive any reply for this.
Any pointers will be appreciated.
Ravi Prakash B.V.
"Ravi Prakash B.V." wrote:
>
> Dear all,
>
> I want to establish cross certification between two different independent
> CAs. How is it possible?
>
> Any po
Dear all,
I want to establish cross certification between two different independent
CAs. How is it possible?
Any pointers/links/docs for the above.
Thanks in Advance,
Ravi Prakash B.V.
__
OpenSSL Project
I created two Root CA's.
1. Test Root CA1
2. Test Root CA2
The Test Root CA2 has two Sub CA's
1. Test Level 1 CA2
2. Test Level 2 CA2
Is there a function, with which I can cross-certificate Test Root CA1 with Test Level1
CA2?
The cross certificate functions with the Test Root CA1 and the T
10 matches
Mail list logo