Creating an X25519-based Certificate

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 


On 30/06/16 16:54, Salz, Rich wrote:
>> Since X25519 is not the first "encrypt-only" algorithm in the 
>> OpenSSL universe, how was requesting certificates handled for 
>> such algorithms in the past?
> 
> It wasn't.
> 
>> For example how would one request a DH certificate?
> 
> You couldn't.
> 
> I don't recall anyone ever asking for such a thing on the public lists.
> 

There is no standardised way of requesting a DH certificate that I know of.

Nonetheless OpenSSL does support the generation of DH certificates, but
it's a bit nasty:

https://security.stackexchange.com/questions/44251/openssl-generate-different-types-of-self-signed-certificate/82868#82868

Matt
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux