Lists

Open Menu Close Menu

Terms and Conditions
Lists hosted on this site
Email the Postmaster
Tips for posting to public mailing lists

Re: Peer-to-peer SSL/TLS best practices/strategy

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Peer-to-peer SSL/TLS best practices/strategy

Subject: Re: Peer-to-peer SSL/TLS best practices/strategy
From: Jens Alfke <email@hidden>
Date: Thu, 13 Dec 2012 10:20:57 -0800

On Dec 13, 2012, at 1:50 AM, Quinn The Eskimo! <email@hidden> wrote:

Getting the private and public keys is easy (SecKeyGeneratePair). Creating the certificate is hard; there's no API for this, so you end up having to roll your own ASN.1 goo. I'm pretty sure Jens has code for that; I'll leave him to provide the details.

My MYCrypto framework does this — https://github.com/snej/MYCrypto

I have to give the disclaimer that some parts of MYCrypto still don’t work on iOS, due to the infuriatingly buggy and poorly-documented Keychain API there, but the code for generating certs isn’t affected by that.

—Jens

 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Macnetworkprog mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden

References:
	>Peer-to-peer SSL/TLS best practices/strategy (From: John Pannell <email@hidden>)
	>Re: Peer-to-peer SSL/TLS best practices/strategy (From: "Quinn \"The Eskimo!\"" <email@hidden>)
	>Re: Peer-to-peer SSL/TLS best practices/strategy (From: John Pannell <email@hidden>)
	>Re: Peer-to-peer SSL/TLS best practices/strategy (From: Jens Alfke <email@hidden>)
	>Re: Peer-to-peer SSL/TLS best practices/strategy (From: "Quinn \"The Eskimo!\"" <email@hidden>)

Prev by Date: Re: Peer-to-peer SSL/TLS best practices/strategy
Next by Date: Re: Peer-to-peer SSL/TLS best practices/strategy
Previous by thread: Re: Peer-to-peer SSL/TLS best practices/strategy
Next by thread: Re: Peer-to-peer SSL/TLS best practices/strategy
Index(es):
- Date
- Thread