It is expected and stated in the EAC standard.
The whole certificate chain for an EAC passport must use the same
algorithm. This means that Country B must create a new DV with the same
algorithm of country A, and send the request from that DV to country A.
It is the responsibility of the country with the DV to see to that the
requests sent to another countrys CVCA uses that CVCAs algorithm.
Regards,
Tomas
stupidtss wrote:
> In my testing, CA & DV of Country A is using ECDSA as signing algorithm and
> that of Country B is RSA. The CA of Country A cannot process cert request
> from DV of Country B and also the vice versa. Is this expected or if it
> indicates that there is something wrong, say, in my settings?
>
> Thanks.
------------------------------------------------------------------------------
Come build with us! The BlackBerry(R) Developer Conference in SF, CA
is the only developer event you need to attend this year. Jumpstart your
developing skills, take BlackBerry mobile applications to market and stay
ahead of the curve. Join us from November 9 - 12, 2009. Register now!
http://p.sf.net/sfu/devconference_______________________________________________
Ejbca-develop mailing list
Ejbca-develop@...
https://lists.sourceforge.net/lists/listinfo/ejbca-develop
