[Muscle] load file DAP
Karsten Ohme
widerstand at t-online.de
Sat Apr 5 04:50:49 PDT 2008
Peter Williams schrieb:
> out of interest, what simple win32 openssl command is required to create
> the file used by GPShell's put_dm_keys?
>
> I tried the obvious choice, but it GPShell PEM_read_PUBKEY call fails to
> read back the public key from this keypair -
>
> genrsa -out c:\foo.pem -des -passout pass:password 1024
No, with this you only create a private keypair DES encrypted. The
public key is implicitly known.
After generating the private key extract the public key with this:
openssl rsa -in foo.pem -pubout -out foopub.pem
Regards,
Karsten
>
>
>
>
> *From:* Peter Williams <mailto:home_pw at msn.com>
> *Sent:* Friday, April 04, 2008 5:54 PM
> *To:* MuscleCard Mailing List <mailto:muscle at lists.musclecard.com>
> *Subject:* [Muscle] load file DAP
>
> 1. Has anyone used GPShell to load an RSA public key into an _issuer's_
> security domain of a 201 card, so one can use the GPShell to send a DAP
> hash and signature for the load file?
>
> 2. has anyone tested the use of SHA1 by itself for a LOAD DAP?
>
> 3 If I half remember right, only a security domain OTHER than the card
> manager SD can verify either a DESCBC or an RSA DAP (given its knows the
> verification key, and knowledge that the signature is either RSA or DESCBC).
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Muscle mailing list
> Muscle at lists.musclecard.com
> http://lists.drizzle.com/mailman/listinfo/muscle
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Muscle mailing list
> Muscle at lists.musclecard.com
> http://lists.drizzle.com/mailman/listinfo/muscle
More information about the Muscle
mailing list