[openssl-users] Key Usage and Extended Key Usage certificate extension values should be required in client authentication
indunil.uom at gmail.com
Mon Feb 5 02:22:17 UTC 2018
Anyone knows in client authentication, what are the Key Usage and Extended
Key Usage purposes we should validate?
As per the specification in :
- "Extended Key Usage" is not necessary and which is configured in
addition to or in place of the basic purposes indicated in the key usage
- "clientAuth" which can be configure as "Extended Key Usage", and Key
usage bits that may be consistent for that is "digitalSignature" and/or
But when validating, what are the key usage purposes that should be allowed
and disallowed for client authentication?
Thanks and Regards
*Indunil Rathnayake *
*Faculty of Information Technology*
*University of Moratuwa.*
Email : *indunil.uom at gmail.com <indunil.uom at gmail.com>* | Skype: indu.upeksha
| Mobile : (+94)713695179 | Twitter @indunilUR |
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the openssl-users