Re: Using javakey with non-javakey-generated keys

Justin Mason (jmason@iona.com)
Fri, 21 Feb 1997 12:04:35 +0000

Message-Id: <199702211158.LAA05193@dublin.iona.ie>
To: Marianne Mueller <mrm@Eng>
Subject: Re: Using javakey with non-javakey-generated keys
Date: Fri, 21 Feb 1997 12:04:35 +0000
From: Justin Mason <jmason@iona.com>

Marianne Mueller said:

>I don't know the details of how Microsoft is encoding or decoding keys
>for Authenticode. I believe they are using the standard format for
>RSA keys, and they are using X509 certificates. I have no idea
>how to get DER credentials out of the Authenticode creds. You might
>ask Microsoft if they publish details of their file formats for that.

That seems to be correct -- my ASN.1 skills aren't really up to that
level (in fact I haven't really got any at all ;) But by inspection
they seem to have tacked on a proprietary header at least.

I noticed the DSA stuff in the doc after sending my mail, so I should
really have RTFM'ed a bit more before sending; RSA and DSA are not
going to interoperate anyway, regardless of the key file format, since
they're different algorithms ;)

Re: the W3C DSig initiative: Good to hear there's a standardisation
effort underway! Looks good too.

Thanks for your answers,

--j.

Justin Mason "Machine code [...] is to do with the Old Testament,
jmason@iona.com and is talmudic and cabalistic..." -- Umberto Eco

See IIOP live on the internet! http://www.iona.com/Orbix/Wonderwall/demo/