Hi folks,
I am having a tough time finding an answer to my codesigning issues.
We have an application for Mac OS written under Cocoa. Finally - we did our codesigning, but i would like to add an extra security check - within the executable itself.
My idea is to validate the fingerprint of the certificate with which the current executa...
This has been asked a couple of times, but none provide coded test cases. Here I give an example of the problem:
programmatic generation of a Keystore (works)
creation of certificate within that store (works)
saving keystore to disk (works)
listing keystore with keytool (works)
loading the keystore programmatically (fails with IOExcep...
Does anyone know if it's possible to create my own wildcard certificate under Ubuntu? For instance, I want the following domains to use one certificate:
https://a.example.com
https://b.example.com
https://c.example.com
...
Hi,
I have a problem with axis2-client inside JAX-WS web service. This JAX-WS web service is inside Tomcat container. Keystorefile is retrieved dynamically from database. When I start Tomcat I can use ws-client normally and it works fine, but if i change the keystore it fails with stacktrace shown below. If I restart Tomcat it works fin...
hi programming folks,
i am using
SignedCms.CheckSignature(certColl, true)
(with only one cert in certColl) to verify the signature of a pkcs-7 message. My problem is that i dont want to change the (public part of the) signers certificate on my server after the signer has renewed his certificate :-( The public key, issuer and subject a...
I have a Delphi app that's running on Windows Server 2003. The app communicates with a webservice on another server that is protected by a Cisco ACE XML Gateway requiring a certificate for client authentication. When I run my app as a local administrator on the box I have no problems connecting to the webservice. When I run it as a me...
I need to create an AS2 connection in BizTalk Server 2006 R2 to communicate with a business partner. I've worked with BizTalk AS2 config before and the BizTalk docs have pretty good walkthroughs about how to configure everything, but they don't talk about how to get/generate a certificate, and I don't have much experience there.
What is...
I have WCF service. I demand clients to authenticate with certificate.
This is service configuration:
<system.serviceModel>
<services>
<service name="FilmLibrary.FilmManager" behaviorConfiguration="FilmService.Service1Behavior">
<endpoint address="manager" name="certBinding" binding="basicHttpBinding"...
I work for a company that is interested in building iPhone apps. However, we are not clear on one issue:
Does the iPhone developer certificate work on more than one computer at a time?
...
I need to create a secure channel between my server and a remote web service. I'll be using HTTPS with a client certificate. I'll also need to validate the certificate presented by the remote service.
How can I use my own client certificate with urllib2?
What will I need to do in my code to ensure that the remote certificate is corre...
If I am using a custom validator to validate the service certificate on the client side, what do i need to do? so far I have the following:
Implemented my own custom validator to validate which implemnents X509CertificateValidator.
Configure the app.config for the client to use the endpointbehavior where I specify to use the Custom Val...
Upon installation of a client side certificate, I am getting the exception "Object contains only the public half of a key pair. A private key must also be provided". My application is a VC#.NET application running over an ASP.NET platform. The application also uses WSE 2.0 to import certificates into making SOAP requests.
Upon research,...
I am interested in Finance and Investment, but I think I will keep on the software developer track in the future several years.
Is it worthwhile to get a CFA certificate or simply grab some books to learn about it? Will it add up to a software developer's career?
For future career, I am targeting development management, architect ...
Hello everyone,
I am working on IIS 7.0 on Windows Server 2008 Enterprise x64. I want to know if I apply for a certifcate from Verisign, is the certificate bind to domain name or bind to computer? Any comments to my 2 concerns below?
More details,
if the certificate is bound to computer other than domain name, then if the computer ha...
Hi,
We have just received some new computers for use in the office (Dell Vostro). They seem to work fine in the main. When we use IE8 to go to some web pages such as yahoo mail it tells us:
“There is a problem with this websites security certificate”
If we have a look at the details it says:
“This certificate cannot be verified up ...
Hello,
I'm attempting to write a bash routine that tests whether or not a user's input is the correct password to my certificate database.
Originally I imagined I'd first execute a benign certutil or pk12util operation on the certificate database that required a password. Then test the return code to see if it was successful.
However,...
Hi all,
I'm new to php and I need to authenticate to a SSO server.
The SSO server is a .Net one, using a SSL certificate.
When I go back from the SSO server, the response is encoded.
I have the key of the certificate of course, but how could I decrypt the response ?
This is very vague for me, don't hesitate to detail your answer :)
M...
I'm building a solution consisting of an app and a server. Server provides some methods (json) and the app uses them. My aim is to make those API methods inaccessible to other clients. What is the best way to do so?
Should I take a look at certificates (to sign every outgoing request)? If yes, where do I start and what is the performance...
Is it possible to send a message over https that isn't encrypted? For example, require that certificate validation and authorization occur, but not encrypt the actual data being sent over the socket?
...
Hi,
I've recently developed a WCF Facade service. I'm new to WCF and having trouble understanding the security implementation pieces.
The service is as follows:
An asp.net public website has a WCF client, which accesses:
A WCF Facade service within a DMZ, which in turn acts as a client to access:
An internal network WCF service
All...