[Opendnssec-develop] Re: [OpenDNSSEC] #100: Certificate support + C_Encrypt and C_Decrypt support

OpenDNSSEC owner-dnssec-trac at kirei.se
Thu Feb 18 07:09:40 UTC 2010

#100: Certificate support + C_Encrypt and C_Decrypt support
Reporter:  calderon.thomas@…          |       Owner:  rb                               
    Type:  enhancement                |      Status:  accepted                         
Priority:  major                      |   Component:  SoftHSM                          
 Version:  trunk                      |    Keywords:  Certificate, C_Encrypt, C_Decrypt
Changes (by rb):

  * status:  new => accepted



 The patches looks good. The only thing I have to do is to implement the
 "TODO", where I check whether the key can be used to sign, verify,
 encrypt, or decrypt. Then I will have a look on the PKCS#11 specification
 of these functions and see if everything is handled correctly.

 I am not so familiar with certificates in combination with decrypt and
 encrypt. Will the implemented mechanism be sufficient for most people? Or
 should I try to add more?

 Do you know any good implementation that I can test with?

Ticket URL: <http://trac.opendnssec.org/ticket/100#comment:1>
OpenDNSSEC <http://www.opendnssec.org/>

More information about the Opendnssec-develop mailing list