>It is not a special extension per se (although the MSIE handling could be
>called extension ;-). It is just a certificate signed by a special CA (the
>certs of which are only available by financial institutions) and the browser
>remembers its true strong crypto capabilities.
Does anyone have an example of MS or NS SGC certificates they can send me? I'd
really like to know what one of these things looks like, I know what the
(documented) cert extensions are to enable SGC but I'd like to see what else is
in there alongside them, and who signs them.
(Actually a complete chain of MS SGC certs would be useful, since I suspect
that some of the documented features of these certs may not exist in practice,
but to see that I'd need to see CA certs as well as the SGC cert).
Peter.
+-------------------------------------------------------------------------+
| Administrative requests should be sent to [EMAIL PROTECTED] |
| List service provided by Open Software Associates, http://www.osa.com/ |
+-------------------------------------------------------------------------+
