[Mono-bugs] [Bug 444291] New: Allow use of NSS certificate stores
bugzilla_noreply at novell.com
bugzilla_noreply at novell.com
Wed Nov 12 12:42:30 EST 2008
https://bugzilla.novell.com/show_bug.cgi?id=444291
Summary: Allow use of NSS certificate stores
Product: Mono: Class Libraries
Version: 2.0
Platform: Other
OS/Version: Other
Status: NEW
Severity: Enhancement
Priority: P5 - None
Component: Mono.Security
AssignedTo: spouliot at novell.com
ReportedBy: vgiszpenc at dsci.com
QAContact: mono-bugs at lists.ximian.com
Found By: ---
A mono binding to NSS to allow X.509 Certificate management (CRUD into
certificate store and validation) would allow reuse of a well established
certificate store used by Firefox. Today on Windows, if you add a certificate
in IE, it is recognized in Outlook because the same certificate store is used
CryptoAPI. If Firefox and Evolution used the same store, the same would be
possible. Mono applications should have the ability to reuse the Firefox
(Mozilla) certificate store. This would allow sharing without having to export
to P12 and import on the other end.
This would be the beginning of a full binding to NSS which will be defined in
another enhancement request.
If verification is part of this effort, it would follow that you would
implement bindings for the necessary algorithms to sign and verify signatures
i.e. hash (SHA1), encrypt (RSA 1024, RSA 2048).
Furthermore, since this will certainly be used for SSL and TLS, it would follow
that all cryptographic functions needed to to create an SslStream have Mono
bindings as well. This would give consumers of this library the ability to use
a FIPS 140 validated library for most cryptographic functions related to X.509
certificates.
Thanks!
Vlad
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
More information about the mono-bugs
mailing list