[openssl-dev] [RFC 0/2] Proposal for seamless handling of TPM based RSA keys in openssl
Richard Levitte
levitte at openssl.org
Tue Nov 22 17:46:39 UTC 2016
In message <489af892b16b43ee9a7009ffe52db794 at usma1ex-dag1mb1.msg.corp.akamai.com> on Tue, 22 Nov 2016 17:40:54 +0000, "Salz, Rich" <rsalz at akamai.com> said:
rsalz> > The more interesting part is when it tries to load files it guesses are raw DER.
rsalz>
rsalz> And this part worries me. I do not think a "security library" should be guessing.
It does this by trying to interpret the blob against known ASN.1
definitions, and will only succeed when there's a complete match. I'm
not terribly worried...
--
Richard Levitte levitte at openssl.org
OpenSSL Project http://www.openssl.org/~levitte/
More information about the openssl-dev
mailing list