Hi, Sorry if this has already been answered, I searched for an answer before asking.
1. What should be trust args for a self-signed certifcate, that needs to be used as a server cert? Should that be valid peer or trusted peer? Can self-signed cert be used with NSS for server authentication? 2. What is the difference between valid peer and trusted peer? Is there any doc or notes out there describing how to use these trust flags 3. What is the relationship between trust flags and extensions in the certificate? If the certificate can itself describe it's type and usage, is there a need for trust flags? 4. I understand that trust flags are unique to NSS and doesn't actually change the certificate, by that I mean, if I were to export the certificate from the key store that had its trust args mofified, the certificate type or extensions would be same as the original cert imported into keystore. 5. This may be a question to the product that uses NSS than on NSS. I changed the "SSL group" of trust args to blank and started this software(from Sun) which uses NSS, it started SSL enabled with that cert. Is that OK or a bug? Sorry for the long list of questions, had to get the basics right and hopefuly will help others looking for similar answers. Thanks SN _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
