[16030] in cryptography@c2.net mail archive
[Muscle] [PATCH] MuscleCard engine for OpenSSL (fwd from mgold@cbnco.com)
daemon@ATHENA.MIT.EDU (Eugen Leitl)
Sat Aug 28 22:19:38 2004
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Sat, 28 Aug 2004 08:29:40 +0200
From: Eugen Leitl <eugen@leitl.org>
To: Cryptography List <cryptography@metzdowd.com>
--U+BazGySraz5kW0T
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
From: Michael Gold <mgold@cbnco.com>
Subject: [Muscle] [PATCH] MuscleCard engine for OpenSSL
To: openssl-dev@openssl.org, muscle@lists.musclecard.com
Cc:=20
Date: Fri, 27 Aug 2004 16:21:23 -0400
Reply-To: mgold@scs.carleton.ca, MUSCLE <muscle@lists.musclecard.com>
I've created a patch to add a MuscleCard engine to OpenSSL 0.9.7d,
allowing it to access smart cards using the MuscleCard API. It is
located at:
http://www.scs.carleton.ca/~mgold/patches/openssl-add-mcard.patch
This engine implements RSA encryption (signing) and decryption using a
private key stored on a MuscleCard-compatible smart card. It has been
tested with a Cyberflex e-gate 32K Java Card running MUSCLE's
CardEdgeApplet (using the MCardPlugin service for PCSC Lite).
Usage example
-------------
This command will use the MuscleCard engine to create a self-signed
certificate:
openssl req -new -text -sha1 -x509 \
-engine musclecard -keyform engine \
-key "E-Gate 00 00:0:1:1111:/var/ssl/cflex_pub.key" \
-out cacert.pem
The meaning of the key string is as follows:
Use PCSC Lite reader "E-Gate 00 00"
Private key 0
Authenticate with PIN #1, value "1111"
Public key is stored in /var/ssl/cflex_pub.key (to export public
key 1 using muscleTool: "exportkey 1 /var/ssl/cflex_pub.key")
- Michael
_______________________________________________
Muscle mailing list
Muscle@lists.musclecard.com
http://lists.drizzle.com/mailman/listinfo/muscle
----------
--=20
Eugen* Leitl <a href=3D"http://leitl.org">leitl</a>
______________________________________________________________
ICBM: 48.07078, 11.61144 http://www.leitl.org
8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE
http://moleculardevices.org http://nanomachines.net
--U+BazGySraz5kW0T
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2-rc1-SuSE (GNU/Linux)
iD8DBQFBMCZTdbAkQ4sp9r4RAvmmAJ9oBwo6NTjrIdpx2Gh1BeQ0fapR8gCfZtK7
5eALaT2rnHt2EhYSimxWHw0=
=aDAC
-----END PGP SIGNATURE-----
--U+BazGySraz5kW0T--
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
