On Thu, Nov 20, 2008, Victor Duchovni wrote: > On Thu, Nov 20, 2008 at 10:03:07AM -0200, Mariano Absatz wrote: > > The most common format for ASN.1 (DER) encrypted keys also bundles in > the associated cert and trust chain, and is called PKCS#12. >
PKCS#8 is also usable. Some utility functions work in a similar way to the PEM versions, see d2i_PKCS8PrivateKey_bio() and i2d_PKCS8PrivateKey_bio(). > Microsoft has a proprietary (now reverse-engineered) format for (just RSA) > password-protected private keys. The 0.9.9 snapshots support this format > via the (not yet documented) -inform "PVK" option. > Use of that for anything other than interoperability purposes is discouraged. It has some security issues, such as the use of RC4 and some small key sizes. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
