tags:

views:

115

answers:

1
+1  Q: 

Get timestamp from Authenticode Signed files in .NET

We need to verify that binary files are signed properly with digital signature (Authenticode). This can be achieved with signtool.exe pretty easily. However, we need an automatic way that also verifies signer name and timestamp. This is doable in native C++ with CryptQueryObject() API as shown in this wonderful sample: How To Get Information from Authenticode Signed Executables

However we live in a managed world :) hence looking for C# solution to the same problem. Straight approach would be to pInvoke Crypt32.dll and all is done. But there is similar managed API in System.Security.Cryptography.X509Certificates Namespace. X509Certificate2 Class seems to provide some information but no timestamp. Now we came to the original question how can we get that timestamp of a digital signature in C Sharp?

+1  A: 

As I see that you've got no replies anyway, let me offer one.

If you don't mind using third-party components, take a look at TElAuthenticodeVerifier component of our SecureBlackbox product. With this component you can verify the signature and check the timestamps.

Eugene Mayevski 'EldoS Corp  2010-08-27 09:54:43
The class looks nice, thanks. Does VerifySignature check certificate validity against CRL online? BTW, I've already implemented timestamp check by pinvoking CryptQueryObject so I am asking just for my curiosity.
SlavaGu  2010-08-28 07:06:12
Yes, CRL and OCSP checking is possible using SecureBlackbox. You'd need to use TElX509CertificateValidator (https://www.eldos.com/documentation/sbb/documentation/ref_cl_certificatevalidator.html) to perform complex (and complete) validation of certificates, used to make a signature.
Eugene Mayevski 'EldoS Corp  2010-08-28 07:10:37
Hi SlavaGu, Could you please share your solution with me? or may be give some idea how can I do. I have also similar issue. Thanks.
Akie  2010-09-24 10:02:37

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?