Arshad Noor wrote:
You may have been a little hasty, Dave.
It wouldn't be the first time, Arshad.
I suspect you've deleted the Private Key from the TCP chip.
Hmm. I think you may be right.
But if you did delete it from ProtectTools, where did you find a certificate to import it into Thunderbird?
I obtained the certificate from Verisign, using IE, from which I exported a .p12 file. I cunningly saved the .p12 file for just an emergency.
Thunderbird allows you to import a cert into its cert-store even without a Private Key, because the tool can legitimately use a certificate to encrypt e-mails with it. However, the certificate most likely will not show up as Your Certificate, but as belonging to Other People.
No, it shows up under "Your Certificates" - this is a good thing, Yes? I send a signed e-mail to myself, and, as the recipient, successfully validated the signature. So that private key is lurking around somewhere, right? It may not be in the TPM, but it lives.
The Private Key was in the TCP chip (ProtectTools), but if you deleted the certificate associated with it, you've likely deleted the Private Key too. BTW, what model of the HP comes with this chip? Thanks.
The model is Compaq nw8440. It has a TPM chip, fingerprint reader, and adds all manner of enhanced security features, like: creation of virtual encrypted drive, hard disk drive locking, BIOS protection, and enhanded folder encryption. Way cool.
Thanks for taking an interest, Arshad. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
