[openssl-users] Not getting "RSA" keyword for a key in fips mode
Gayathri Manoj
gayathri.annur at gmail.com
Fri Jun 12 11:04:01 UTC 2015
Thanks Steve for the quick reply.
On Thu, Jun 11, 2015 at 7:27 PM, Dr. Stephen Henson <steve at openssl.org>
wrote:
> On Thu, Jun 11, 2015, Gayathri Manoj wrote:
>
> > Hi All,
> >
> >
> > I am trying to create a pem format key for my existing key by using the
> > below command.
> >
> > openssl rsa -in my_rsa_key -outform PEM -out my_res_newkey_pem
> >
> > The new key format is -----BEGIN PRIVATE KEY-----.
> > But I am expecting -----BEGIN RSA PRIVATE KEY-----
> >
> > In nonFIPS mode i am getting -----BEGIN RSA PRIVATE KEY----- as expected.
> >
> > My openssl version is OpenSSL 0.9.8zf-fips.
> >
> > Please let me know how can I generate the new key in BEGIN RSA PRIVATE
> KEY
> > format.
> >
>
> You can't because the format isn't allowed in FIPS mode because it uses
> MD5 for key derivation.
>
> Steve.
> --
> Dr Stephen N. Henson. OpenSSL project core developer.
> Commercial tech support now available see: http://www.openssl.org
> _______________________________________________
> openssl-users mailing list
> To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20150612/4df9a642/attachment.html>
More information about the openssl-users
mailing list