Also be able to load certificates from engines

CMP [RFC4210] implementation based on OpenSSL

Status: Beta

Brought to you by: dvodvo, mpeylo, mviljane

This project can now be found here.

#27 Also be able to load certificates from engines

Milestone: far future

Status: open

Owner: nobody

Labels: None

Priority: 5

Updated: 2017-07-19

Created: 2017-07-04

Creator: Martin Peylo

Private: No

Certificates can be accessible by means of PKCS#11 - if the security token is changed, it is beneficial when the certificate comes along with the key.

This should be enabled in the CLI.

Discussion

David von Oheimb - 2017-07-13

The OpenSSL engine interface only supports use of keys, but not their generation nor storing and retrieving certificates. PKCS#11 (and to some extent also PKCS#15) can indeed be used here.

For Windows, an interface to CNG (for accessing the Windows cert and key stores) would be nice.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Martin Peylo - 2017-07-19

Group: Next Release (example) --> far future
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Also be able to load certificates from engines

CMP [RFC4210] implementation based on OpenSSL

Group

Searches

Help

#27 Also be able to load certificates from engines

Discussion