Clifford Heath wrote:
>
> > is it possible to convert PEM to BER with SSLeay ? With other product ?
>
> Not without breaking the signature. What SSLeay calls "PEM" format (which
> it uses for many more object types than PEM defines) is just a base64 encoding
> of a (usually DER-encoded) object with header and trailer lines, so it's easy
> to convert to DER encoding. If you want to parse the ASN.1 and write BER, you
> could, but the signature wouldn't verify as it's the DER encoding that's signed.
But isn't DER a valid subset of BER? So converting to DER should be
fine for most purposes, right?
If a third-party system wants BER and you give it DER, it should work.
I'm not an expert, but that's my understanding...
Brendan.
--
Brendan Quinn | [EMAIL PROTECTED]
Sofcom Internet Publishers |
Level 1, 399 Riversdale Rd | Phone: +61 3 9882 3811
Hawthorn East 3123 | Fax: +61 3 9882 7619
Victoria, AUSTRALIA | http://www.sofcom.com
+-------------------------------------------------------------------------+
| Administrative requests should be sent to [EMAIL PROTECTED] |
| List service provided by Open Software Associates, http://www.osa.com/ |
+-------------------------------------------------------------------------+
