stackoom
  简体   繁体   中英

how to create trust chain for certificate validation using openssl in C++.?

 原文  2011-07-07 08:42:40       c++/ openssl/ x509certificate/ signature/ verification

Question


can any one tell me how to create a trust chain. i am having 5 CA certificates(CA's are different). i need to create a trust chain with the Maximum depth of 3.

i need to verify a certificate signature which can be signed by any one of the CA. All the CA files are in a folder named " CertificateFolder ".

1 answers

solution1
 0  2011-12-26 21:24:20

First you need to establish the relation between these 5 CAs. The chain is defined by the dependency between your CA certificates. Example: ROOT_CA signs CA_1 and CA_2. CA_1 signs CA_11, and CA_2 signs CA_21. These CA certificates will be part of your trusted chain.

Then there's SSL_CTX_load_verify_locations , which specifies the default locations (directories) for trusted CA certificates.

Having this you'll be able to verify if a given certificate is signed by one of your CAs.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How can an openssl client trust a self signed certificate for a server how to create Timer task in c++.? how to abbreviate the values of hexadecimal by using C++. How can i renew an expired or create self-signed certificate key any.pem Poco c++ using openssl Create x509 chain with c++ openssl lib How to verify certificate with ocsp using openssl CLI/C++. How to refer to box using name stored in variable? How to create ocsp request using openssl in c++? this in c++. how does it work? How to get PEM encoded X509 certificate as C++ string using openssl?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM