i would like to know why the intermediate CAs are
stored in the
certificate store and not with the Roots. This would be the way all
others do it like the Firebird/Windows etc.
Because an intermediate certificate is not a root certificate :). Root
certificates are the certificates you 'blindly' trust (with blindly I
mean that trust is not inferred from a higher level certificate).
Whether you store an intermediate certificate in it's own separate store
is nothing more than how you present it to the user. I didn't want to
add another menu item just to show the intermediates in it's own store
because they are stored in the same database as end user certificates.
Afaik Windows does not store the intermediates in the same store as the
roots (at least that's not what IE shows me).
Is there a particular reason you want the intermediate CAs to be stored
separately from the end user certificates?
Djigzo open source email encryption