On Thu, Jun 18, 2009 at 11:28:48AM -0400, Jim Adams wrote:
> The private key is probably encoded with a non-FIPS-compliant algorithm.
> Try encoding the private key with PKCS8.
No. See my previous post. In any case, the browser is generating the
container. The container can be re-encoded, to use
m<http://www.bluezonesoftware.rocketsoftware.com/>
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of Lior Aharoni
Sent: Thursday, June 18, 2009 11:12 AM
To: openssl-users@openssl.org
Subject: pkcs12 command does not work in FIPS mode
Hello,
I have
On Thu, Jun 18, 2009 at 12:16:21PM -0700, Kyle Hamilton wrote:
> Mozilla Firefox, when the Platform Security Module is in FIPS mode.
>
Just in case anyone is confused, the 40-bit RC2 encrypts the certificate,
not the private key. From the pkcs12(1) manpage:
-descert
encrypt the certifi
Mozilla Firefox, when the Platform Security Module is in FIPS mode.
-Kyle H
On Jun 18, 2009, at 11:39 AM, Randy Turner wrote:
That would imply that, when operating in FIPS mode, FIPS sites in
the US Govt. can't import or export certificates.
In the comment below, the phrase "Most browser
That would imply that, when operating in FIPS mode, FIPS sites in the
US Govt. can't import or export certificates.
In the comment below, the phrase "Most browser output...". Is there
any browser that uses FIPS algorithms to import/export
certs?
Randy
On Jun 18, 2009, at 9:55 AM, Dr. S
- Original Message -
From: "Dr. Stephen Henson"
On Thu, Jun 18, 2009, Lior Aharoni wrote:
I have encountered a problem when trying to use OpenSSL command to decode
PKCS12 file, I am using OpenSSL 0.9.8j that was build with FIPS support
enabled.
snip
*
Can someone shed light on why
On Thu, Jun 18, 2009, Lior Aharoni wrote:
> Hello,
>
> I have encountered a problem when trying to use OpenSSL command to decode
> PKCS12 file, I am using OpenSSL 0.9.8j that was build with FIPS support
> enabled.
>
> When working in non FIPS mode I perform the following operation
> successfully
Lior Aharoni wrote:
> I have encountered a problem when trying to use OpenSSL command to
> decode PKCS12 file, I am using OpenSSL 0.9.8j that was build with FIPS
> support enabled.
> When working in non FIPS mode I perform the following operation
successfully:
> K:\>openssl
> OpenSSL> pkcs12 -in
Hello,
I have encountered a problem when trying to use OpenSSL command to decode
PKCS12 file, I am using OpenSSL 0.9.8j that was build with FIPS support
enabled.
When working in non FIPS mode I perform the following operation
successfully:
*
K:\>openssl
OpenSSL> pkcs12 -in k:\server.p12.pfx
*
