What's the most compact way to store a password-protected RSA key?

Posted by Tim on Server Fault See other posts from Server Fault or by Tim
Published on 2010-12-09T17:07:32Z Indexed on 2011/01/05 10:55 UTC
Read the original article Hit count: 175

Filed under:
|
|

I've tried converting a PEM-encoded key to DER format, and it appears the password is stripped regardless of the -passout argument.

Example:

openssl rsa -in tmp.pem -outform DER -out tmp.der -passin pass:foo -passout pass:bar -des3

The resulting key appears no longer password-protected, so I am assuming that DER format does not support a password - is that correct?

What alternative way is there to store this in a compact, binary form, and keep the password-protection?

© Server Fault or respective owner

Related posts about linux

Related posts about openssl