tags:

views:

509

answers:

3
Q: 

Verify integrity Ceritifcate { RSACryptoServiceProvider - SHA1 - thumbprint }

Hello, sorry for my english.

I have a little problem. I want to verify the integrity of my certificat.

I make this code:

using System.Security.Cryptography;
using System.Runtime.InteropServices;
using System.Security.Cryptography.X509Certificates; 

SHA1Managed sha1 = new SHA1Managed();
RSACryptoServiceProvider csp = null;
AsymmetricAlgorithm rsaAlgo = certificatEnCours.PublicKey.Key;
byte[] data = null;
byte[] hash = null;

string keyPublic = "";
string signatureNumérique = "";

bool verif = false;

// ------------- PART 1 -------------

signatureNumérique = certificatEnCours.Thumbprint;

data = Convert.FromBase64String(signatureNumérique);

// ------------- PART 2 -------------

hash = sha1.ComputeHash(certificatEnCours.RawData);

keyPublic = rsaAlgo.ToXmlString(false);

csp = new RSACryptoServiceProvider();

csp.FromXmlString(keyPublic);

// ------------------------------

verif = csp.VerifyData(hash, CryptoConfig.MapNameToOID("SHA1"), data);

but i have already value "false" for the var "verif"

A: 

There is no actual question here. You are right that you are unconditionally ignoring the initial value of verif. More importantly, have you considered using X509Certificate2 to do verification?:

X509Certificate2 x2 = new X509Certificate2(certificatEnCours);
bool verif = x2.Verify();

I think this is wiser than re-inventing the wheel.

EDIT: If you are verifying a chain of certificates I believe you want to use X509Chain and in particular the ChainStatus property.

Matthew Flaschen  2009-06-19 09:25:23
A: 

Just one question. Do you absolutely need to check the certificate manually? Can't you use the integrated X509Certificate2.Verify method?

AlexDrenea  2009-06-19 09:25:54
A: 

Thanks for your quick response.

You are faster that the french's forum. ^^

Sorry, that i have forgot put a question.

I want to verify that the certificate "child" was send by the certificate "father".

Someone has said me about this, it's for this reason that i have make this code.

But when i use the fonction cert2.Verify();, i have the answer false.

Do you have some idea??

 2009-06-19 09:52:43

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?