digital-certificate

Extracting private key from .cer to .pem with openssl

How can I export the private key embedded in an .cer file and convert it to .pem using openssl. Update: If I download a .cer file from Apple and import it into KeyChain, I can export the private key as a .p12 file. How can I do this using openssl? ...

smime C# encrypted emails with attchments

I need to send encrypted emails using C# without using any third party component. This is pretty much working as long as I do not need attchments on the email but as soon as I add attchments, I face the same problem as described on http://social.msdn.microsoft.com/forums/en-US/netfxnetcom/thread/74e4711e-1f66-43a7-9e3b-bc9cfbcd1b73/ The...

http post + digital certificate required.

Hi, I want to post some xml to an external server and have been told that: "The transmission protocol used is https (SSL). This requires that your initiating server has a valid digital certificate." Where do I get one of these? I have a Thwate Personal Email Certificate but not sure if that would do? Thanks, ...

Only Allow applications digitally signed to access wcf service.

I have been searching n the web on how and if it is possible to verify that the calling application is digitally signed with the correct certificate. This is for internal use for my corporation. we want to digitally sign our applications and only let our digitally signed applications to access our wcf services. is this a configuration o...

In C#, sign an xml with a x.509 certificate and check the signature

Hi I'm trying to sign an XML file using a x.509 certificate, I can use the private key to sign the document and then use the CheckSignature method (it has an overload that receives a certificate as parameter) to verify the signature. The problem is that the user who validates the signature must have the certificate, my concern is, if t...

Signing .CAB files in linux?

Hi, I'm looking for a free (LGPL, etc) tool for digitally signing a Microsoft Cabinet files (.CAB) in Linux. I have found a tool that does that job, named osslsigncode: I can't use it in our commercial product since its GPL. I can't even buy it since the guys who wrote it are unavailable. For those who are wondering how I create the C...

Delphi & SmartCards

Does anyone have experience integrating SmartCard authentication in their Win32 apps? If so, are there any preferred libraries? ...

WCF Certificate Authentication without installing on the Client

Hi All, Our setup includes a WCF service and a number of clients written by us. Some of the clients include Silverlight applications, whereas others include Web and Windows applications. I (think) I would like to authenticate clients based on X.509 certificates. Typically you would install a private key on the client to encrypt (aka ...

cocoa + keychain api

hi guys i am working on an app in which i have to display all the digital certificates available on my Mac laptop. should i use keychain to get access to these certificates?? where is the physical location of these certificates??? i want to list their names to a standard output. Please reply me with few links with examples(if possibl...

PKCS11 certificate

Does Dot NET supports PKCS11 certificates for HSM devices. If not, are there any other third party utilities available which supports pkcs11 certificates? ...

What is the difference between signing Certificate and Encryption Certificate?

What is the difference between between signing certificate and encryption certificate? I see that signing certificate cannot be used for encrypting the data only encryption certificate. What is the technical difference? Does both have public key and private or only encryption cert will have PP key? ...

What is the most cost effective way for me to sign all my apps?

I've developed quite a number of shareware programs over the last number of years and I sell 10 or so online, I've noticed with Windows Vista and Windows 7 and now even my AV scanner warns me my programs aren't signed. So what is the most affordable way for me to sign my many installers? I don't want to pay per program as this would be e...

How do you create a self-signed certificate for use in object signing?

I am trying to create an object-signing certificate myself instead of paying Verisign or some other company hundreds of dollars. I am using linux (specifically 64bit OpenSUSE 11.1) so it would be best if I could create it in that environment. I have successfully created self-signed certificates for Apache to use for https connections usi...

Signing a PDF file

I use iTextSharp to sign a PDF file. But Adobe Reader cannot verify my signature. I use SHA-2 test certificate (I tried also SHA-1) generated by certification authority. I have installed root certificate for test certificates of this authority. public static void SignHashed(X509Certificate2 card, Stream input, Stream output) { Org.B...

Is is possible to sign a java applet for free?

I made a weird applet which allows you to paint with your voice. Obviously it requires access to the microphone, but Java applets are not allowed access unless they are signed. As far as I can tell its difficult and involves cryptography, and, though its not clear, I think that I'm expected to pay MONEY to Verisign as well. This all seem...

Difference Between SSLCACertificateFile and SSLCertificateChainFile

I provide SSL pages on my web server, and I have a question. What is the difference between SSLCACertificateFile and SSLCertificateChainFile? When I use SSLCertificateChainFile, I got warnings from Japanese cellular phone browser, but when I use PC browser(like IE, FF), there was no problem. On the other hand, SSLCACertificateFile didn'...

How to test the code signing of a JAR file on a client machine?

We have signed a JAR file using a certificate generated by MS Active Directory Certificate Services. However, when accessing it via Java Web Start we are getting the prompt that the digital signature cannot be verified even though we've installed the root CA into the certificate store on the client machine. Now trying to look at the ro...

Does signing an assembly or an exe with a digital certificate makes it secure against tampering attacks?

I tried creating a temporary certificate using makecert and creating a spc from the certificate using cert2spc. I signed some exe with the generated spc. I then use the binary editor in VS 2008 to flip some bits (tampered it) in the exe. To my surprise I was able to execute the application. I was expecting that the system will detect th...

Avoid signed assembly network access

I'm using a .net assembly that was digitally signed (using comodo), and I noticed that the first time my application loads the assembly it connects to 'ocsp.usertrust.com' and 'crl.comodoca.com'. Is there a way to avoid these connections? ...

Code Signing for Linux

Are there any providers offering code signing certificates for (Red Hat Enterprise) Linux? I see a lot of buzz for Microsoft-land, but not much for Linux. I know how to generate my own certificates and embed a public certificate into my executable. I'm specifically looking for ways to get the certificate signed by a trusted CA. The t...