Hello, I am interested in web security right now. So I read about PKI and Diffie Hellman authentication forms. Now I am reading about certificates and I ask me how that works. So I know Browser have some trusted certificates in it, so you trust the pages, the company which the browser is from, trusts already. So when A trusts B and B ...
Hello there, A bit of a long shot here, but this site has continued to impress. Recently I've been doing a bunch of work with SCEP (Simple Certificate Enrollment Protocol). Specifically I've been tasked with writing a SCEP/CA server and a client to get certificate from my and other SCEP servers. So I'm really, really close to being don...
Hello, I have another question to security in the web world. So I read (and ask :P) about certificates and think I got what it is and how it works. My next question is putty specific. When I open a connection with putty to a new server with ssh (port: 22) I get a PuTTY Security Alert: The server's host key is not chacked in the regi...
Hello nice persons, Just got the iphone 4 and am eager to run my 'personally built' apps on it. Have looked everywhere on the apple website, but can't see where you 'sign up for a developer certificate'. Can someone explain to me how to do this, in baby steps? ...
I'd like to import a new certificate into the keystore without restarting a running service. Is that possible? Alternatively, is it possible to specify a certificate to use that's not in the keystore for a specific URL connection? ...
Short version: Is it necessary or even possible for me to generate a new distribution certificate based on my existing private key, or is there no harm, both for new apps and updates to existing apps on the app store, to generate a new certificate with a new private key? Long version: It seems to me that there is conflicting/misleadin...
What is OPDA Certificate? Because during installation of unsigned symbian apps, it gives an error. "unable to install a protected app from an unknown supplier" So what does this certificate contains actually????? And after signing the application with this OPDA certificate and the key, the application works.... ...
I want to upload my first APK/app to the Android Market, but I got this error (which did not lead me to the correct link when searched for in stackoverflow, by the way). Market does not accept apks signed with the debug certificate. Create a new certificate that is valid for at least 50 years. Market requires that the certificate used t...
Hello good people, I'm currently using the Development Provisioning Assistant to setup my certificate so I can run my app on my iphone. I'm at the part in Setup called Submit Certificate Signing Request and it is asking me to submit the file that I generated using KeyChain Access. The problem is that it says "The Certificate file select...
Hi! I have a WCF Service that runs over TCP with Certificate security like this : <binding name="netTcpUserNameMessageSecurity" portSharingEnabled="True" transactionFlow="false" transferMode="Buffered" transactionProtocol="OleTransactions" hostNameComparisonMode="StrongWildcard" listenBacklog="10" maxBufferPoolSize="2147483647" maxBuf...
Hi all, I am trying to use iOS security framework to securely communicate with my server. I have a certificate file from which I am able to get a public key reference. This is what I doing. NSString *certPath = [[NSBundle mainBundle] pathForResource:@"supportwarriors.com" ofType:@"cer"]; SecCertificateRef myCertificate = nil; NSDat...
Is there any way we can chain our own generated key pair with an existing certificate which has been chained to a root CA (eg: verisign)? Basically my question is described in diagram below Verisign Root CA | --> Company XYZ certificate | ---> Server foo certificate Once i've generat...
Hello One of site's I visit has Java Applet, which must use certificate based authentication. I got this cert and added it to Java's key store(cacert) as well as to key chain of Mac. When applet starts it offers to choose certificate for authentication from list - but this list is empty. Does anybody know about this issue in Mac Os an...
I write android application. How can I use Certificate in https connection when I init cert from der file and not from pkcs? When I have pkcs file with password, this code works: KeyStore keyStore = KeyStore.getInstance("PKCS12"); keyStore.load(certificateIs, pass.toCharArray()); KeyManagerFactory kmf = KeyManagerFactory.g...
I'm currently writing an application that administrators can use to enroll smartcard logon certificates on behalf of regular users. I have a valid certificate with the EnrollmentAgent template in my certstore, that was issued from the same CA that I enroll the smartcard certificates from. This is my code, based on the CMCOnBehalf.cpp sam...
Hi... I want to call a secure webservice, using a cert that I have... the server takes a long time to authenticate with the cert, and, while this is ok the first time, the user will call it over and over again (in the same "session") and I feel I ought to be able to reuse the connection. I have the following code. System.setProperty("...
Hi, I am trying to create a PKCS#12 keystore with more than one certificate. this option does seem to be documented well - everyone talks about creating a .p12 file from a single certicate in a .pem file, like this: openssl pkcs12 -export -in my_single_signed_cert.pem -out keystore.p12 -name "Alias1" this creates a new .p12 file ea...
Hi Guyz, I am calling some HTTPS web service which the following Client: import java.io.ByteArrayOutputStream; import java.io.FileInputStream; import java.io.IOException; import java.io.InputStream; import java.io.OutputStream; import java.io.PrintStream; import java.net.HttpURLConnection; import java.net.URL; import javax.net.ssl.Htt...
Hi folks, I am writing some Java client to a web service. I am already have xxx_FX.crt and xxx_IE.crt certifications for FF and IE repsectively. I've putted them both in jdk/jre/lib/security but the client still throw the famous exception: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path buildi...
What is the advantage of using a trusted certificate instead of self-signed for message security in WCF? As far as i understand it's only used for encryption, not really validating the identity. ...