On 12/01/2009 02:05 AM, Nelson B Bolyard:
The version of CRMF used in Firefox is a somewhat old but nonetheless open
standard. Perhaps OpenSSL doesn't claim to support it. There are other
CA programs that do. (OpenSSL wasn't intended to be an operational CA
program.) My advice: Don't limit yourself to OpenSSL. Look at DogTag, an
open source CA product that works well with Firefox.
The realities are that many use either OpenSSL or Java, but nobody uses
CRMF. At least I'm not aware of it, but know many that support the
good'ol and outdated keygen tag due to the lack of anything better that
also works with some/most browsers.
To Ivan:
I'm not sure what you have seen at OpenID, but certainly no certificates
nor CRMF functions.
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
XMPP: start...@startcom.org
Blog: http://blog.startcom.org/
Twitter: http://twitter.com/eddy_nigg
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
