tags:

views:

547

answers:

1
+1  Q: 

Specify client certificates in HttpWebRequest in .NET Compact Framework 3.5

Previously, I was trying to use client certificate on .NET CF 2.0 (see here) and I ultimately had to give up. I'm now on .NET CF 3.5 which has support for the ClientCertificates property on the HttpWebRequest object. However, I can't figure out how to instantiate the X509Certificate or X509Certificate2 object with a pfx file. On the full framework, I can simply do something like new X509Certificate2(filename, password). If I try to create the object with bytes read from a .pfx file, I get an exception saying ".NET CF 3.5 does not support pfx files". So how do I specify a client certificate with a private key for use with the ClientCertificates property?

A: 

According to MDSN there are only 2 contructors available/supported by the compact framework:

http://msdn.microsoft.com/en-us/library/system.security.cryptography.x509certificates.x509certificate2.x509certificate2.aspx

The .NET CF supported constructors have a little device icon next to them in the first column.

These are:

X509Certificate2(array<Byte>[]()[])

http://msdn.microsoft.com/en-us/library/ms148413.aspx

X509Certificate2(IntPtr)

http://msdn.microsoft.com/en-us/library/ms148414.aspx

Martin Peck  2009-12-23 09:34:10
Yes, I noticed that. What I don't understand is how do I specify a client certificate for use with SSL client authentication when compact framework's X509Certificate object does not support a private key? It is my understanding that the private key is used to authenticate the client to the server so that the server may trust the client. I can't see any way to do that on the compact framework despite Microsoft having added the ClientCertificates property in 3.5...
Jason  2009-12-23 15:15:16
I think the way to do this is to use the X509Store class to access certificates in the local certificate store, then use these certificate - rather than loading one from file.
Martin Peck  2009-12-23 15:38:12
Ok, interesting... How would I add a certificate to the store with the associated private key?
Jason  2009-12-23 16:06:42
I've not done this personally, but I believe that provision CE devices with certificates (see http://stackoverflow.com/questions/287316/how-to-automate-importing-certificates-on-a-windows-ce-device) or you can use the CE UI to do this (see http://msdn.microsoft.com/en-us/library/ms900349.aspx for hints)
Martin Peck  2009-12-23 16:18:46
Hmm, it looks like the provisioning is only available on Windows Mobile. I need to run on plain old Windows CE. The cert UI in the control panel could work, but I need to automate this programmatically. Can you add .pvk files to the store using X509Store? If not, I need to figure out how to use the appropriate Win32 API to do this...
Jason  2009-12-23 16:43:32

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?