Re: PKCS-12 Spec. History

[Stephen Farrell <stephen.farrell@xxxxxxxxxxxx>]

Peter,

Have you compiled any info on p#15 soft-token implementations?
(Assuming there's a few out there.)

If so, do you reckon there's a useful "profile" we could 
document/reference as the basic sacred credential format?

Ta,
Stephen.

Peter Gutmann wrote:
> 
> Dale Gustafson <dale.gustafson@xxxxxxxx> writes:
> 
> >If we use anything other than v1.0, I suspect we'll have to dig up old copies
> >of the spec. from the RSA archives (or somewhere).
> 
> It's not just the spec, you need to find old copies of the software to see what
> they generate, which may not be what's in the spec (my favourite is the version
> of Netscape which, when wrapping a pile of ASN.1 in a OCTET STRING, gave each
> portion of the underlying data (ie each tag, each length, and each value
> portion) its own individual constructed OCTET STRING fragment to live in).
> 
> If you're not being forced to use PKCS #12 for interop reasons, I'd go with a
> PKCS #15 soft-token, which is a much nicer format.
> 
> Peter.

-- 
____________________________________________________________
Stephen Farrell         				   
Baltimore Technologies,   tel: (direct line) +353 1 881 6716
39 Parkgate Street,                     fax: +353 1 881 7000
Dublin 8.                mailto:stephen.farrell@xxxxxxxxxxxx
Ireland                             http://www.baltimore.com