Wednesday, 30 March 2011
MS PFX - How not to design a crypto standard
PFX from Microsoft is an outdated standard for storing an asymmetric private key and public certificate as an encrypted file. It is relevant today because 1) it is the precursor to the widely used PKCS#12 standard from RSALabs and 2) it is so horribly confusing it serves as a counter-example of how not to write a standard (at least, according to this article.)
Subscribe to:
Post Comments (Atom)
1 comment:
In teh 90s, I found the Certificate X.509 standard was used slightly wrong by almost everyone.
ASN ("Asinine") meant that nobody accepted any blame
Post a Comment