Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
commonopensslcommands [2016/05/30 14:01]
yassine chaouche [How to generate a private key ?]
commonopensslcommands [2016/06/01 11:27] (current)
yassine chaouche [How to generate a public key ?]
Line 22: Line 22:
  
 <​code>​ <​code>​
-openssl ​pkcs8 -in user.key ​-pubout> ​user.pub+openssl ​rsa -in private_key ​-pubout > public_key
 </​code>​ </​code>​
  
-.oO **pkcs8** is better than the old rsa. Here's an excerpt from the openssl'​s man page 
-<​code>​ 
-[from man rsa] 
-the rsa command uses 
-       the traditional SSLeay compatible format for private key encryption: 
-       newer applications should use the more secure PKCS#8 format using the 
-       pkcs8 utility. 
-</​code>​ 
- 
-From wikipedia :  
-<​code>​ 
-PKCS stands for "​Public Key Cryptography Standards"​ 
-</​code>​ 
- 
-For example, PKCS#8 stores private key information and its associated openssl command is **openssl pkcs8**. The PKCS#10 deals with CSRs and its openssl command is **openssl req**. 
- 
- 
-<​quote>​ 
-PKCS#8 is **Private-Key Information Syntax Standard**, Used to carry private certificate keypairs (encrypted or unencrypted). 
-</​quote>​ 
  
-.oO if you don't add the **-pubout** option then the private key will be output again. The **-pubout** option is kind of telling openssl to extract the public part of user.key. 
  
 ==== How to generate a CSR ? ==== ==== How to generate a CSR ? ====

QR Code
QR Code How to generate a private key ? (generated for current page)