Hi. Is there a way to check in Javascript if given a host it's SSL certificate is valid? (non blocking) In my case I want to display: "you can also use https://.." if via javascript I can make a request to https://my_url without being asked to accept an untrusted certificate. Can this be done asynchonously? -- M. ...
Hi all, Recently posted a question regarding the HttpClient over Https (found here). I've made some headway, but I've run into new issues. As with my last problem, I can't seem to find an example anywhere that works for me. Basically, I want my client to accept any certificate (because I'm only ever pointing to one server) but I keep...
So I've been trying to set up certificate authentication for my clients and services. The eventual goal is to partition data based on the certificate a client connects with (i.e. the certificate becomes their credentials in to the greater system and their data is partitioned based on these credentials). I have been able to set it up suc...
I have a distributed application consisting of many components that communicate over TCP (for examle JMS) and HTTP. All components run on internal hardware, with internal IP addresses, and are not accessible to the public. I want to make the communication secure using SSL. Does it make sense to purchase signed certificates from a well-...
I need to create Client/Server application to send files from clients to Server. I use simple ssl sockets for that and authenticate with certificates. ms = socket.socket(socket.AF_INET, socket.SOCK_STREAM) ssl_sock = ssl.wrap_socket(ms, keyfile=".../newCA/my_client.key", certfile="...
I have a Windows service that will normally be run using the Local System Account (although in some installations it may as a specific user account). The service is using WCF, with communication secured using X509 certificates. My question is, where is the best place to store the certificate (and private key)? If using a certificate s...
After signing a jar , we can retrieve the public keys from jar using Certificate[] cert = jarentry.getCertificates(); Once certificate is extracted we can save this to a new keystore as trusted cert. Once this is done , then second user can sign any jar using this certificate , isn't ? I want to distribute content as jars , contents...
Hi I am looking for extending my current iphone app for iPad-specific UI. For the same Apple has mentioned 3 ways, however I am using the method where a Single XCODE proj is used for having 2 targets- iphone & iPad. There are a few queries: two binaries will be created , which I can price differently for selling. Will they need 2 have...
I am attempting to follow the instructions on this page: http://developer.apple.com/iphone/library/documentation/NetworkingInternet/Conceptual/RemoteNotificationsPG/ProvisioningDevelopment/ProvisioningDevelopment.html#//apple_ref/doc/uid/TP40008194-CH104-SW4 To write a Java based test server that will push a payload on the sandbox push...
I'm trying to sing an ActiveX control with a code signing certificate issued by Thawte. I was able to successfully sign the control using signtool.exe. When I look at the file properties, it says "The certificate in the signature cannot be verified." When I view the certificate it says "Windows does not have enough information to ve...
Hello I am trying to verify a root/self-signed certificate by trying to decrypt the signature with a known/trusted Public Key, then checking if the decrypted hash matches the original certificate hash. I get the remote certificate by using RemoteCertificateValidation callback on the sslStream class. The certificate is given as a X509C...
I'm seeing the dreaded "Code Sign error: The identity 'iPhone Developer' doesn't match any valid certificate/private key pair in the default keychain" error. Strange, as it used to work. Not sure what changed. A few of the symptoms I've noticed beyond this: In the project info, for Code Signing Identity, instead of saying "iPhone De...
I want to verify if the text log files created by my program being run at my customer's site have been tampered with. How do you suggest I go about doing this? I searched a bunch here and google but couldn't find my answer. Thanks! Edit: After reading all the suggestions so far here are my thoughts. I want to keep it simple, and since...
I'd like to use client certificates to verify the identity of administrative callers to my web service. Then I can issue certificates only to the people I want to call my web service and be pretty sure noone else can call it. This is in a very controlled scenario where only one or two people will get the client certificate, so distributi...
I have copy the samples from msdn site: http://msdn.microsoft.com/en-us/library/ms229744%28v=VS.90%29.aspx http://msdn.microsoft.com/en-us/library/ms229943%28v=VS.90%29.aspx I've created a certificate, but when i run the program i have this error in the Decrypt method: "Unable to retrieve the decryption key" I've read somewhere that ...
I have binded my IIS7 with a third party 'Server certificate' (Not issued by my server). I have deployed a secured WCF service on this server with Transport security. When i try to consume this service, it only accepts those client certificates which are issued by my server (made using makecert). The third party client certificates just ...
In bouncycastle I can create a DEROctetString starting from a KeyUsage. How can I obtain KeyUsage starting from a DEROctetString then? Example: DEROctetString derString = new DEROctetString(new KeyUsage(KeyUsage.digitalSignature)); KeyUsage ku = ...(some code to get back KeyUsage starting from derString)... I need this because I'm a...
I am hosting a secured WCF service (transport level security) which needs to authenticate users with third party client certificates. To accept those client certificates, I have binded my IIS7 with third party Server Certificate. Theoretically speaking this should work perfectly. But it is not, It continues to give error as The HTTP req...
I am trying to provision my iphone for development; I followed all the steps the developer portal to adding and making the keychains and whatnot, but after trying double click the certificate, as it says in the developer portal, keychain access gives me an error: An error occurred. Unable to import “iPhone Developer: Kevin Mendoza (RT5V...
I'm been struggling with WCF for a while now and I can't seem to figure it out. I have a self-hosted WCF service with SSL enabled (using a signed certificate from a self-signed root CA), so far so good. The service is for business-to-business communication so certificates seemed to be the best solution. (I'm using the WS binding at the ...