Currently our pkcs12 implementation requires localKeyID attribute for the private key, and the corresponding end-entity certificate, in order to match the public/private key pair. However, in the case of pkcs12, which has only one private key with the associated certificate chain, we could relax this restriction, and allow entries with null localKeyID. Note: This request comes from Borland. See comments for details. ###@###.### 10/12/04 16:44 GMT
|