[Interest] How to trust certificates for QWebPage
Thiago Macieira
thiago.macieira at intel.com
Tue May 27 20:05:41 CEST 2014
Em ter 27 maio 2014, às 09:52:42, Tom Isaacson escreveu:
> Thanks for the constructive comments. We're not expecting to support a
> browser that can visit any website on the internet, just a small list
> that's relevant to our device, so I'm hoping this is more manageable. The
> problem is that I just don't know where to start, but that link is a good
> place.
You should start with your own CA.
Create a CA for your company / device / device family, etc. Then create a
certificate signed by this CA and deploy it on the server. The CA's certificate
should be installed on the device, either as a global OpenSSL setting or by
using QSslConfiguration to set the CA list.
Mind you: please make it sure that you can upgrade the CA list, even if it
contains only one entry. You may want to add more in the future. Though this
might be done as part of the firmware upgrade.
--
Thiago Macieira - thiago.macieira (AT) intel.com
Software Architect - Intel Open Source Technology Center
More information about the Interest
mailing list