funa68
Reputation: 959
What are PKCS#12 vulnerabilities?
I'm asking this under the assumption that every security protocol has a vulnerability.
Background: I'll be using PKCS#12 to send over a certificate and matching private key to iPads for them to install onto their device. I will then have the user install the Cert/Priv key into their keychain and to use it as an identity when signing into other deployed machines.
Are there any common/critical mistakes done when implementing PKCS#12 ?
Upvotes: 0
Views: 1034
Answers (1)
Yasir Malik
Reputation: 439
There are some issue listed in the following documents. You may find some useful information.
http://www.drh-consultancy.demon.co.uk/pkcs12faq.html
ftp://ftp.rsasecurity.com/pub/pkcs/98workshop/privkey.pdf
Upvotes: 1
Related Questions
- Creating a .p12 file
- What is wrong with this pkcs12 file (pfx)
- PKCS#12 support in pyOpenSSL is deprecated
- What for are the commonly used PKCS-Standards: PKCS#7, PKCS#10 and PKCS#12?
- Regarding: PKCS7, X509 and DER
- Openssl, engine_pkcs11, libp11/OpenSC
- How to load pkcs12 and convert it to char* with openssl?
- Convert to PKCS12 v1.0
- RFC 3447(pkcs#1 v2.1): Is it implemented in Openssl ? If so from which version?
- Are there any published extensions to PKCS#12?