shibboleth-dev - Re: [Shib-Dev] how to deliver personal infocard keyinfo to app?
Subject: Shibboleth Developers
List archive
- From: "Tom Scavo" <>
- To:
- Subject: Re: [Shib-Dev] how to deliver personal infocard keyinfo to app?
- Date: Fri, 8 Aug 2008 22:04:04 -0400
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:in-reply-to:mime-version :content-type:content-transfer-encoding:content-disposition :references; b=Q3Qj1DNBZUR2YE8PZ2W/UnwVcon3ZGi2iUdn/0tCDHD3f3twS/hC+xb4ArPxf1jdjU 4YkPN8adfrZIOMiyZVP8nLdQquv4+UecIm3094xJjXS9RsaNbDPLC9XcR3bUc6wEHHhB mLI29F26YDsHAAtRQ28ev0LyIjM6dakS7JHJ4=
On Fri, Aug 8, 2008 at 5:07 PM, Scott Cantor
<>
wrote:
>
> So I guess I'm talking about the SubjectPublicKeyInfo format.
Not quite (we just finished working through this the last few days).
The SubjectPublicKeyInfo contains two fields, the AlgorithmIdentifier
and the bits of the public key. The Subject Key Identifier (SKI)
extension is *usually* obtained by computing the SHA-1 hash of the
public key bits only (not the AlgorithmIdentifier), which is then
base64 encoded. Not all certs have an SKI extension, and not all
those that do compute it as above, but it's the most common way to do
so. (OpenSAML/Java does it this way, in fact.)
So one approach is the following. If you have a cert, ignore the SKI
extension and compute the SKI as above. If you have the key only,
compute the SKI as above. So in all cases you end up with the same
thing.
Tom
- RE: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Jim Fox, 08/08/2008
- RE: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Scott Cantor, 08/08/2008
- Message not available
- Re: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Tom Scavo, 08/08/2008
- Re: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Scott Cantor, 08/09/2008
- Re: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Tom Scavo, 08/09/2008
- RE: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Scott Cantor, 08/09/2008
- RE: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Peter Williams, 08/09/2008
- Re: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Tom Scavo, 08/09/2008
- RE: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Peter Williams, 08/09/2008
- RE: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Scott Cantor, 08/09/2008
- RE: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Jim Fox, 08/10/2008
- RE: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Scott Cantor, 08/10/2008
- RE: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Jim Fox, 08/11/2008
- RE: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Peter Williams, 08/09/2008
- RE: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Scott Cantor, 08/09/2008
- Re: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Tom Scavo, 08/09/2008
- Re: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Scott Cantor, 08/09/2008
- Re: [Shib-Dev] how to deliver personal infocard keyinfo to app?, Tom Scavo, 08/08/2008
Archive powered by MHonArc 2.6.16.