In message <[EMAIL PROTECTED]> on Sun, 26 Mar 2006 20:22:48 +0200, Francesco Gennai <[EMAIL PROTECTED]> said:
francesco.gennai+openssl> thank you for the pointers. You're welcome. francesco.gennai+openssl> Now we need to move the private key to a francesco.gennai+openssl> signing device. Uhmm, you do know that most devices will not import a private key, and will instead have a couple of predefined ones or will allow you to create news ones, right? francesco.gennai+openssl> We could use also an expensive solution, francesco.gennai+openssl> like an HSM, but we would know about francesco.gennai+openssl> existing experiences, and about products: francesco.gennai+openssl> SmartCard models and producers and/or HSM francesco.gennai+openssl> models and producers that have been already francesco.gennai+openssl> used in OpenSSL/OpenVMS environment or that, francesco.gennai+openssl> accordingly to your experiences, could be francesco.gennai+openssl> tested. I would have a chat with the OpenSC (http://www.opensc-project.org/) guys, as they've already written an engine module that interfaces pkcs11 libraries. There are a few other implementations floating in our contrib area as well. Cheers, Richard -- Richard Levitte [EMAIL PROTECTED] http://richard.levitte.org/ "When I became a man I put away childish things, including the fear of childishness and the desire to be very grown up." -- C.S. Lewis ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
