>From what I remember, SecureLink uses SSL only to talk to an OpenMarket
server to generate and manage secret symmetrical keys. These keys are
used to encode MAC paramaters on URLS to ensure that a generated Digital
Offer, Ticket, etc are valid. The symmetrical keys may have little to do
with SSL..
What you are probably refering to is the Securelink Bridge, which is more
of a proxy type application to protect your web server and enure that only
those with the proper Digital Ticket are allowed access. I used the
securelink bridge for about 1 week before deciding it was pretty useless
for us and found alternative methods of providing the required
service. From what I remember, the securelink bridge uses a private key
length that is very short, and when purchasing a cert using the private
key generated by securelink bridge, we got a "do you really want to do
this" type error from Verisign, and that was two years ago. I do not
remember the format of the key for the securelink bridge, but I'd advise
to be leary (unless they have changed it) of any keys generated by
securelink. I'd keep seperate keys for both the securelink and openssl
servers. You'll have to pay for two certs I suppose, but I believe that is
a fair tradeoff.
Jeff
[EMAIL PROTECTED]
On Wed, 16 Aug 2000, Charles Walker wrote:
> One of my colleagues is currently at a customer who has a product called
> SecureLink, by OpenMarket. I don't know too much about this product,
> except that it talks SSL. It has a database which contains a private
> key, a public key, and the certificate. We have been trying to figure
> out what sort of format the private key is in.
>
> We have a product which uses OpenSSL. Our product can decrypt SSL
> traffic provided we have access to the server's private key, which of
> course must be in a format that OpenSSL can cope with. Does anybody out
> there have any experience of exporting private keys from SecureLink and
> putting them in a format the OpenSSL can use?
>
> Thanks,
> Charles Walker
> --
> =======================================
> Charles Walker, Networking Consultant, Trio Networks
> mail: [EMAIL PROTECTED] Web: http://www.trionetworks.com
> Business Phone: +44 (0)1494 680077 Mobile: +44 (0)7720 291053
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
>
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
