GPG 2.1 released

Improved X.509 certificate creation

In addition to an improved certificate signing request menu, it is now
possible to create a self-signed certificate using the interactive menu of
*gpgsm*.

In batch mode the certificate creation dialog can now be controlled by a
parameter file with several new keywords. Such a parameter file allows the
creation of arbitrary X.509 certificates similar to what can be done with
*openssl*. It may this be used as the base for a CA software. For details
see the “CSR and certificate creation” section in the manual.

The new commands --export-secret-key-p8 and –export-secret-key-raw= may be
used to export a secret key directly in PKCS#8 or PKCS#1 format. Thus X.509
certificates for TLS use may be managed by *gpgsm* and directly exported in
a format suitable for OpenSSL based servers.
https://gnupg.org/faq/whats-new-in-2.1.html

Received on Monday, 24 November 2014 03:36:10 UTC