Re: Support for CKA_ALWAYS_AUTHENTICATE

On 02/01/2010 02:09 AM, Helge Bragstad wrote: > Hi, > > My understanding from previous postings on this list is that the > CKA_ALWAYS_AUTHENTICATE + CKU_CONTEXT_SPECIFIC features of PKCS #11 > are not supported in NSS. Is this likely to be implemented in the near > future? Actually, that's not th

Re: Mozilla-JSS in FIPS compliant mode

Darn - fat fingered the commands at the bottom. I have run certutil -N -d . modutil -fips true -dbdir . -force --- On Thu, 2/4/10, Anna Gellatly wrote: From: Anna Gellatly Subject: Re: Mozilla-JSS in FIPS compliant mode To: "mozilla's crypto code discussion list" Date: Thursday, February 4, 2

Re: Mozilla-JSS in FIPS compliant mode

Hello - I have been reading this document to configure NSS. When I configure my configuration file to look like this name = NSS nssLibraryDirectory = /usr/lib64 nssDbMode = noDb attributes = compatibility Things "run" in my environment and my trust provider class loads and runs When I configure

Re: Converting jks to secmod.db (copying key/cert from JKS to NSS DB)

On 2/3/2010 11:56 AM, Anna Gellatly wrote: Thanks for the info David . When I run this command: /usr/java/current/bin/keytool -importkeystore -srckeystore /proximo/config/cluster/trusted.keystore -srcalias mykkey -destkeystore test.p12 -deststoretype PKCS12 and put in the destination password an