ObscureTags.com: keygen tag example

Maybe it's late and my brain is starting to fade out, but Mozilla's documentation for the keygen tag is giving me a headache:

"The KEYGEN tag facilitates the generation of key material and submission of the public key as part of an HTML form. This mechanism is designed for use in web-based certificate management systems. It displays a menu of key-size choices from which the user must choose one. Then, when the submit button is clicked, a key pair of the selected size is generated. The private key is encrypted and stored in the local key database. The public key and challenge string are DER encoded as PublicKeyAndChallenge and then digitally signed with the private key to produce a SignedPublicKeyAndChallenge. The SignedPublicKeyAndChallenge is base64 encoded, and the ASCII data is finally submitted to the server as the value of a name-value pair, where the name is specified by the NAME attribute of the KEYGEN tag."

Check out what it does:

It works in Firefox, anyway...

Has anyone actually used this? Can you provide an example? Drop by our forums if you can shed some light on how this might be appropriate on a page.

main menu

forums

Source:

Comments:

alech
2007-04-09 05:05:09

Sure, we use it all the time in the OpenXPKI project. It is particularly useful for letting users enroll for a certificate completely browser-based.

Mate
2007-03-28 12:52:04

jupi

Dick
2007-03-23 04:39:36

i wish my name was orniponum

spoon?!?!
2007-01-02 04:18:28

It only goes up to 2048?

Weak.

Bergo
2006-12-26 17:25:32

I've used this. Most of VeriSign's Managed PKI services utilise this tag for anything not MicroSoft IE. This includes old netscape, current Firefox, and believe it or not Lotus Notes. Yup .. it's still used.

Add your comments here
Name:
URL:
MSG:
1000 Characters max. HTML will be entitized. We record your IP.
The number of the beast =