You may have been a little hasty, Dave. I suspect you've deleted
the Private Key from the TCP chip.
But if you did delete it from ProtectTools, where did you find a
certificate to import it into Thunderbird?
Thunderbird allows you to import a cert into its cert-store even
without a Private Key, because the tool can legitimately use a
certificate to encrypt e-mails with it. However, the certificate
most likely will not show up as Your Certificate, but as belonging
to Other People.
The Private Key was in the TCP chip (ProtectTools), but if you
deleted the certificate associated with it, you've likely deleted
the Private Key too.
BTW, what model of the HP comes with this chip? Thanks.
Arshad Noor
StrongAuth, Inc.
Dave Pinn wrote:
I am very excited to report that I managed to find a solution, although
why it worked remains a mystery.
I deleted my certificate from ProtectTools; I then imported it into
Thunderbird, selecting "Embedded Security Chip" as the token. Simple,
huh? Why didn't I try that earlier, I ask myself.
One thing still puzzles me. There's an icon in ProtectTools Certificate
Viewer for each certificate; the one next to the certificate that I
added to Thunderbird "is used for certificates without corresponding
private key" (according to the Help documentation). So where is the
private key? Could it still be in Thunderbird's certificate database? I
don't want it in there; I want it to be safely stored away in the TPM.
Can good 'ol modutil and certutil help me determine where my private key
is?
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
