- From: Melvin Carvalho <melvincarvalho@gmail.com>
- Date: Mon, 24 Nov 2014 04:35:42 +0100
- To: public-webid <public-webid@w3.org>, public-rww <public-rww@w3.org>
Received on Monday, 24 November 2014 03:36:09 UTC
Improved X.509 certificate creation In addition to an improved certificate signing request menu, it is now possible to create a self-signed certificate using the interactive menu of *gpgsm*. In batch mode the certificate creation dialog can now be controlled by a parameter file with several new keywords. Such a parameter file allows the creation of arbitrary X.509 certificates similar to what can be done with *openssl*. It may this be used as the base for a CA software. For details see the “CSR and certificate creation” section in the manual. The new commands --export-secret-key-p8 and –export-secret-key-raw= may be used to export a secret key directly in PKCS#8 or PKCS#1 format. Thus X.509 certificates for TLS use may be managed by *gpgsm* and directly exported in a format suitable for OpenSSL based servers. https://gnupg.org/faq/whats-new-in-2.1.html
Received on Monday, 24 November 2014 03:36:09 UTC