[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[iaik-jce] certificate signing

The IAIK library's implementation of X509Certificate does not allow a new certificate to be created until it is signed.  This makes sense.  My problem is, I want to create a certificate, sign it, and then be able to add and change unsigned extensions without having to resign the certificate every time I do so.  Is this possible ?  If so, how would I go about it?
Thanks in advance,
Aaron Haspel