[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [pkcs11] RE: [pkcs11-comment] Attributes of EC private key objects
I'm not sure what your use case is here. E.g. where did you get the public key you're trying to match to the private key?2. SubjectPublicKeyInfo can have multiple correct values for the same keyI don't see any problem with SubjectPublicKeyInfo definition for RSA keys mostly because the "parameter" field of "algorithmidentifier" is required to be present and is also required to be NULL. However for the EC keys the "parameter" field of "algorithmidentifier" is defined as a choice of three different options. In chapter 2.3 of [PKCS11-curr] there is a statement that only two of the options (ecParameters and the namedCurve) are supported by Cryptoki, but this still leaves two possible values of SubjectPublicKeyInfo. I am not sure which one of them should Cryptoki app use as a value of CKA_PUBLIC_KEY_INFO in search templates.
Mostly you should be using CKA_LABEL and CKA_ID to relate various objects.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]