Menu
▾
▴
Re: [Trustedjava-support] jtt on win 7 and creating an AIK programmatically
|
From: <Fed...@ff...> - 2012-10-01 12:46:32
|
Hi, Thanks for your answer. Am I to understand that the jTSS has no method equivalent to Tspi_TPM_CollateIdentityRequest () then? Is it not defined as a standard method in the TSS? Federico -----Opprinnelig melding----- Fra: Martin Pirker [mailto:Mar...@ia...] Sendt: 1. oktober 2012 14:36 Til: Mancini, Federico Kopi: tru...@li... Emne: Re: [Trustedjava-support] jtt on win 7 and creating an AIK programmatically Hi... On 2012-10-01 13:36, Fed...@ff... wrote: > Now, I would like to create an AIK, .... > This seems to be some kind of dummy AIK certificate generated by some internal privacy CA? The AIK cycle in jTT is just for local testing purposes, so yes, certificates are created on-the-fly with random dummy values. > How would I go to get the AIK certificate signed by privacyCA.com instead? > and send it as a POST to privacyCA.com, There are undocumented commands/code included with JTT, in iaik.tc.apps.jtt.pki.* you will find experimental code to talk to privacyca.com. However, as you can see from the copyright notice this is from 2007/08 and I don't know anyone who has ever run it again since then, so it's probably non-functioning. > I could not find any clear documentation about this. For an alternative PrivacyCA implementation look at the "apki" package in the PrivacyCA 0.2 folder. (Note that this code is also unfinished and unmaintained) Good luck :-) Martin |
