Using OpenSSL

In the following OpenSSL will be used to demonstrate how you can generate key pairs and certificates. Note that you may use another tool as well.

OpenSSL is an open-source toolkit implementing the Secure Sockets Layer (SSL v2 and v3) and Transport Layer Security (TLS v1) protocols. Additionally, it is a general-purpose cryptographic library.

OpenSSL comes with a command-line tool to use it's cryptographic functions, such as:

• Creating and managing public/private key pairs
• Cryptographic operations with public and private keys
• Creating X.509 certificates and PKCS #10 certificate requests

OpenSSL can be downloaded at following locations:

• http://www.openssl.org/source
• http://www.slproweb.com/products/Win32OpenSSL.html (Windows)

The following procedures assume that you have OpenSSL 0.9.8l or later installed.