[Openswan Users] converting public keys in PEM format to DNS Key
RR format
Michael Richardson
mcr at sandelman.ottawa.on.ca
Tue Apr 20 15:08:12 CEST 2004
-----BEGIN PGP SIGNED MESSAGE-----
>>>>> "v" == v ramireddy <v.ramireddy at student.qut.edu.au> writes:
v> I am working on Openswan code modification to support TCPA
v> signing operations. ipsec.conf file uses public keys encoded in
v> DNS key RR(RFC 2537)format. TCPA generates public keys in PEM
v> format.
Well, PEM isn't a format, but an encoding.
Does TCPA do X.509/PKIX format (i.e. PKCS#7)? If so, what CA?
You can trivially load them.
If you are trying to convert an ipsec.secrets file raw format to
PKCS#7, I can help you in various ways with patches to openssl.
We hope to write a raw->self-signed PKIX format program soon.
Can you explain your project more?
- --
] ON HUMILITY: to err is human. To moo, bovine. | firewalls [
] Michael Richardson, Xelerance Corporation, Ottawa, ON |net architect[
] mcr at xelerance.com http://www.sandelman.ottawa.on.ca/mcr/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Finger me for keys
iQCVAwUBQIVnCYqHRg3pndX9AQELUgQArsAbPGFikiomgxgrrJXgQHATT0GLltyQ
n0+ttcXG37EwYeSoh4i7R2fM6+UDK0/VCaML2gZ7/i6bEgc/sMF3iqzyST0FcTb0
Cc0Bsa94u0Lq0y+UBqPLx+Rz2Tf5nm04vlCoDIZ0LB+mMaHRj2jALRJ8qdjnYQi8
IOA8/N9LKZI=
=N5Rz
-----END PGP SIGNATURE-----
More information about the Users
mailing list