Lijun Liao
Lijun Liao
The validity in the certificates issued before can not be modified. The modification of the configuration has only effect on the new certificates.
The keys delivered in the binaries are only for demo purpose, they MUST be replaced by your own.
Currently, I am evaluating the addition of EST support to my opensource project XiPKI. For EST, I need the external PSK support in CA (TLS server side), and also the...
Is there any update to this topic?
Just tested the master version of OpenSC. It works for data up to 1222 bytes, for data with 1223+ bytes the C_SIGN returns CKR_DATA_INVALID. I attached two log files for...
Thanks for the detailed analysis. About the key, for each test (data1222 and data1223) I generate the keypair on the fly and then execute the sign operation. So they are...
> When the hash must be calculated in the card, then the maximum message length is limited by the size of the internal APDU buffer. Larger messages should be hashed...
> Do any of the cards support command chaining that could be used to send the data to be hashed in chunks? > This would be similar to C_SignInit, C_SignUpdate(s)...
Hi, thanks for the detailed comment. As you may know, I use my spare time to maintain this project (for free). I will come back to you in the next...
> Karaf 6.5.2 includes the CMP command. > Karaf 6.5.3 does not have the CMP command. Karaf 6.5.3 does provide the CMP commands. You need to call the `./prepare.sh`before starting...