I need an SSL certificate for a web server. I can generate a self-signed SSL certificate with the following OpenSSL commands: openssl req -newkey rsa:512 -x509 -days 365 -nodes -out cert.pem -keyout cert.pem openssl dhparam -inform pem -in cert.pem -outform pem -out dhparam.pem 512 cat dhparam.pem >> cert.pem If I want to have a CA-si...
I have always wondered about this: do computer language certificates exist as it happens with natural languages? For example, if you are a foreigner, you can always go to learn English and sit an exam organized by the British Council. If you pass it you can prove your qualifications by showing the certificate (for example a CPE), increa...
I have a simple web service that has an API third party developers are allowed to access. The API mostly follows REST principles. I'm interested in solutions to make the API more secure by requiring developers to use client certificates. Is there any open source solutions or other implementation advice any of you have that would assist ...
I'm currently working with a payment processor. I can browse to the payment URL from our server, so it's not a firewall issue, but when I try to use CFHTTP I get a I/O Exception: peer not authenticated. I've downloaded and installed their latest security cert into cacerts keystore and restarted CF and am still getting the same error. Not...
Hi All, I have a variable of type PCCERT_CONTEXT which contains a certificate (this is actually the certificate of the digital signer of a given executable file.) I need to get the certificate or at least the name of the issuing CA. I've tried using CertOpenStore and WTHelperCertFindIssuerCertificate, but have had no success. I would ap...
I find all these work-arounds for NSUrlConnection's which use a closed API to access a non-trusted SSL certificate. The other options is to install the certificate first by using the Safari/Mail app.. I'd like to know what root certificates are installed, so I can get one from the trusted CA, the way you're supposed to do it.. Anyone ...
I have enrolled on the standard iPhone Developer Program and I've successfully created a provisioning profile for my iMac. But I also have a MacBook Pro that I use to work while I'm traveling. But with the standard iPhone Developer Program there seems to be no way to have 2 computers to work, unless I spend time revoking and re-creating/...
Lead in ... I'm not an expert, by far, in application security via SSL, but am trying to establish a test environment that includes all possible scenarios we may encounter in production. For this I have a tree of Certificate Authorities (CAs) that are the issuers of an assortment of test client certificates, and node/server certificates ...
I need a little insight into some authentication issues in adobe AIR. Three related facts that fit into my question: Whenever accessing my https:// site from my AIR application, I get the untrusted site warning When I build an AIR app, I don't have a paid-for certificate, so I sign it myself for now My site (that gives the untrusted wa...
I have a webapp which receives a certificate request through upload via a servlet (non-ssl). The CSR is signed by the webapp, and sent back to the user which installs the certificate in their browser. Now, how do I make the servlet container accept HTTPS connections with the newly signed certificate? As far as I know, the signed certi...
I have a client who wants their app code signed, so we pointed them to a few well known, well trusted CAs (Verisign, Thawt, etc), then they came back with InstantSSL (because it was only 180/yr as opposed to 500/yr). How do I know that InstantSSL will be trusted on a customer of this application's computer? ...