certificate

How to validate certification path against url

WARNNING: Total certificate newbie I have a certificate that is used for server authentication and I want to check if that certificate is validate for the url that the server is publish on. for example: if the certificate is for *.myserver.com then any url that its host part ends with myserver.com is valid. What I would like is some...

iPhone: HTTPS client cert authentication

I'm fighting with a client certificate authentication. When a server needs a credential (a certificate in this case), this method is invoked from NSURLConnection delegate: (void)connection:(NSURLConnection *)connection didReceiveAuthenticationChallenge:(NSURLAuthenticationChallenge *)challenge I want to load a certificate from a file...

renew a SSL cert on IIS6?

This question is active at http://serverfault.com/questions/67844/renew-a-ssl-cert-on-iis6. Thanks. My manager ordered a new wild card cert for our website as our current is expiring in a few days. Now, I am stuck as I cannot figure out how to install it? It is a cert from GoDaddy.com. I have downloaded it to my server. Upon unzi...

How do I sign a Java midlet?

How do I sign a Java midlet? ...

Missing Client-Certificate´s PrivateKey

Hi people, can someone tell me please why i dont have the cert.PrivateKey (=null) after i instantiated an X509Certificate2 from an HttpClientCertificate during a web method call.. sth like this: X509Certificate2 cert = new X509Certificate2(Context.Request.ClientCertificate.Certificate, "test"); The HttpClientCertificate has an private...

Java Sign jars with server certificate

Is it possible to use a server certificate to sign a java web start app? What I want to know is if will it work. I have a trusted certificate for my server, and I would like to reuse the same certificate to sign an app. Right now, I have this warning: This jar contains entries whose signer certificate's ExtendedKeyUsage extension doesn...

WSE3003: The certificate's trust chain could not be verified

I am writing a system that consumes a public web service. I'm consuming the web service using VS2008 and classic .NET Framework 2.0 Web Services technology. My problem is not consuming the web service or calling it's operations. The problem is when I get the response back from the operation it is signed and behind-the-scenes the generat...

How do i check the client browser SSL certificate

How do i check the client browser SSL certificate in my ASP.net code behind I want to ensure that if any https proxy like fiddler is running then my application does not load I have done the following till now without any success: My site is on Https In IIS i have set Require SSL= true Require 128 bit encryption =true accept certificate...

SSL certificate for HTTPs, activex signing and most mobile phone SDKs

Hello, this is mostly a deployement than a programming question. If I were to buy an SSL certificate from a CA, would I be able to use it to sign other applications (such as symbian, android, iphone ones)? If so, what (re)seller would you recommend? ...

Using the "Service Account" certificate store with .NET 2.0 HttpWebRequest

I have a .net 2.0 windows service application written in C# that access a non-soap web service via SSL with HttpWebRequest. My windows service runs under the NETWORK SERVICE account. I am able to make SSL work by issuing a cert to the web server that my windows service talks to from a CA, then installing the CA's cert to the Local Mach...

Custom certificate validation in WCF service

Hi. I want to check client certificates in my WCF service. My goal is to allow only clients with certificates with specific thumbprints to be able to communicate with my service. My WCF service is hosted in IIS, I'm using basicHttpBinding and security mode="transport" with credential type "Certificate". IIS requires client certificat...

WCF Service with OpenSSL Certificates

I've gotten my WCF webservice running with basic self-signed certificates generated by makecert (using some of the many online tutorials on the subject) but have found that there are certain capabilities that we require when generating certificates that makecert does not seem to handle. As such I'm trying to create my certificates using ...

How to determine the root of a certificate?

My root certificates are stored as several files in ASN.1 format. Assume I have a chained end entity certificate in the same format. How do I efficiently determine the root certificate of this certificate? Currently I have to take a brute force approach which extracts the public key of the end entity certificate and validates that agai...

WCF message security without certificate and windows auth

I have a WCF service and client which is going to be deployed to several companies (hundreds). Some companies will run the software in their network and some will run it over the Internet (WCF server at on office, WCF client at another). We want to encrypt the communication between the WCF server and client. We don't have any need to au...

HTTPS with NSURLConnection - NSURLErrorServerCertificateUntrusted

I have an application that connects fine over http. When trying https I got the error that says that the root cert is not trusted. I found URLs for my site certificate, its CA certificate, and the CA's root certificate and have added them through Safari to the phone. Now when I go to Preferences -> General -> Profiles I can see all my...

How can my server securely authenticate iPhone in-app purchase?

Look at Apple's diagram for the server purchase model. In step #9, how can the server know that it is really talking with an iPhone that is entitled to the purchase, and that Eve is not performing a replay with a dishonestly obtained receipt? The receipt may be valid, but that doesn't prove that the sender is the entitled party. Is th...

wss4j: - Cannot find key for alias: monit

Hi I'm using axis1.4 and wss4j. When I define in client-config.wsdd for WSDoAllSender and WSDoAllReceiver different signaturePropFiles where I have different key stores defined with different certificates, I'm able to have different certificates for sending and receiving. But when I use the same signaturePropFiles' with the same keystore...

Client certificate in Axis2

I'm using Axis2 and need to attach a client certificate when I make requests to a specific Web Service. So far I haven't modified anything from the Axis2 configuration (axis2.xml or anything else), and I'd really prefer to keep it that way. The solution in C# is very straightforward: X509Certificate2 cert = new X509Certificate2(pathToC...

Any reviews of O'Reilly School of Technology courses and/or certificates?

Has anyone had experience with O'Reilly School of Technology? I'm a new(er) front-end guy with 2.5 years of FT work under my belt and I have CSS/HTML down pat, and am looking to expand my JS knowledge, so I'm looking into the Client-Side Programming Certificate. Work would pay for it, so that's not a problem. However, if there are better...

Importing certificate from .pfx file in Windows Server 2008

I need to automate installation of SSL certificates using scripts. I have been able to import server certificate from .pfx file using: certutil -user –p 123 -importpfx "C:\Users\test\Desktop\ISServer.pfx" However, it stores the certificate in Personal folder of Current User. I need to store it in "Trusted People" folder. Is there a wa...