Discussion:
[Ejbca-develop] Issue certificates with SHA-384/PSS
Bruce Bernstein
2017-02-08 17:07:10 UTC
Permalink
Has anyone been able to coerce ejbca community edition to issue
certificates signed with RSASSA-PSS format SHA-384? It seems from the
docs that this is only available with the enterprise edition using HSM.
We need a software solution, preferably with software encoding. Any
pointers would be appreciated.

Thanks,
Bruce
Tomas Gustavsson
2017-02-09 08:33:36 UTC
Permalink
Right, currently only SHA256 is available. Do you have a standard use
case where SHA-384 is needed? To motivate adding the feature. Adding
algorithms for "soft" keystores are actually quite simple, only with
HSMs is it more tricky since currently PSS requires java patches to work
with HSMs for that algorithm.

Regards,
Tomas
---
Save time and money with an Enterprise support subscription. Please see
www.primekey.se for more information.
https://www.primekey.se/technologies/products-overview/
https://www.primekey.se/service-support/support/
Post by Bruce Bernstein
Has anyone been able to coerce ejbca community edition to issue
certificates signed with RSASSA-PSS format SHA-384? It seems from the
docs that this is only available with the enterprise edition using HSM.
We need a software solution, preferably with software encoding. Any
pointers would be appreciated.
Thanks,
Bruce
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________
Ejbca-develop mailing list
https://lists.sourceforge.net/lists/listinfo/ejbca-develop
Loading...