Re: SSL sans RSA

Martin Grap (mgrap@concord-eracom.de)
Wed, 17 Feb 1999 16:17:57 +0100

• Next message: EKR: "Re: SSL sans RSA"
• Previous message: Perry E. Metzger: "Re: p3 vs k7"
• In reply to: Ge' Weijers: "Re: p3 vs k7"
• Next in thread: James A. Donald: "Re: SSL sans RSA"
• Reply: James A. Donald: "Re: SSL sans RSA"

At 02:00 PM 2/17/99 +0100, you wrote:
>I'm considering adding support for non-rsa based key exchange to
>Roxen's SSL implementation. But the SSL3 spec doesn't contain enough
>details or references on DH and DSA signatures and certificates. If
>anybody could answer the questions below, or point me to accurate
>references, I will be most grateful:
>

Have a look at RFC 2459 (Internet X.509 Public Key Infrastructure Certificate
and CRL Profile). The document describes object-Id's and other ASN.1 stuff for
algorithms different from RSA when used in X.509 cetificates.

Martin

--------
Dipl. Inform. Martin Grap, Concord-Eracom Computer Security GmbH
Talstrasse 11, D-72218 Wildberg, Germany
Tel. : {+49} (0)7054-9267-0, Fax: {+49} (0)7054-1837
e-mail: mgrap@concord-eracom.de, CE-homepage: http://www.concord-eracom.de

• Next message: EKR: "Re: SSL sans RSA"
• Previous message: Perry E. Metzger: "Re: p3 vs k7"
• In reply to: Ge' Weijers: "Re: p3 vs k7"
• Next in thread: James A. Donald: "Re: SSL sans RSA"
• Reply: James A. Donald: "Re: SSL sans RSA"