x509certificate

.net Client Side Web app?

Never done any .net stuff before and am wondering if it is possible to run a .Net web application client side through a browser? Or does it only work by processing on the server then spit out an HTML page? I would like to leverage the System.Security.Cryptography.X509Certificates namespace to access a user's Windows-MY keystore and pull ...

Add a KeyUsage extension on a Bouncycastle certificate request

Hello. Could anyone post a Java code for adding to a PKCS10 bouncycastle certificate request an extension regarding a KeyUsage (for example a KeyUsage.keyEncipherment). I didn't find anything ad i cannot find a proper contructor for X509Extension with a KeyUsage. Thanks ...

Streaming api for reading/writing certification revocation list in java

Hi, My project has a module which generates crl for revoked x509 certificates. However, the crl generation api provided by bouncy castle is fully 'memory' dependent and I don't think it will scale after some point in time. I also know that crl can be generated as deltas or in partitions. But is there an api which can generate crl witho...

How to P/Invoke CryptUIWizExport Function using .NET

Can anyone translate these two cryptui.dll functions/structures into C#.NET [dllimport] wrappers? I would like to P/Invoke the CryptUIWizExport function to display the Windows Certificate Export Wizard. In particular, I need to pass a .NET X509Certificate as a parameter into the CryptUIWizExport function. You help is much appreciated!!! ...

Setting up a ssl server socket with signed certificate

I'm trying to make a simple server which listens on a port and authenticates with ssl. I have files server.crt server.key my-ca.crt obtained with a openssl tutorial (http://www.vanemery.com/Linux/Apache/apache-SSL.html). my-ca.crt is my own CA certificate, server.crt contains the x509 server certificate (signed with my-ca.crt) and ser...

Get Private Key from BouncyCastle X509 Certificate? C#

Normally when I grab an X509Certificate2 out of my keystore I can call .PrivateKey to retrieve the cert's private key as an AsymmetricAlgorithm. However I have decided to use Bouncy Castle and its instance of X509Certificate only has a getPublicKey(); I cannot see a way to get the private key out of the cert. Any ideas? I get the an X50...

How read key usage information from x509 certificate using NSS

I'm using nss libraries to read certificates off a smart card/CAC. This is for an app on red hat linux. Bascially I need to get the list of certificates from the CAC and present to the user in a gui (using wxWidgets) allowing the user to pick the certificate to use for authentication. For that, I need to present the certificate list in a...

Cannot find a unique certificate that matches the criteria

I am running into the following error when attempting to parse my token: Property name: 'certificateReference' Error: 'ID1025: Cannot find a unique certificate that matches the criteria. StoreName: 'My' StoreLocation: 'LocalMachine' X509FindType: 'FindByThumbprint' FindValue: '‎41a8a59e537d4a00a8c4fa8dc2522388dbd13d27' The section in m...

ComException while adding a new Item to Outlook

I'm developing an Outlook 2007/2010 plugin in VSTO (the project is for 2007, but works also with 2010). This application works with certificates (the System.Security.Cryptography.X509Certificates.X509Certificate class), which are handling some time after initialization (in other threads); I suspect this may be the reason for the ComExcep...

How do I automate access to an IIS website that has "require client certificates"?

Hi - I work on an IIS6/ASP.NET website that must "require client certificates" in the form of a smart card (specifically a Common Access Card). I need to create a few services to access various URLs on a timer to do things like update search indices, warm up Sharepoint pages, and other tasks. How can this be done, given that the sit...

JAVA - Creating X509 certificate from byte array

Hi, my server application send a certificate (by an array of byte) to the client who have to recreate the original certificate using the byte[] array. How can i do this? If i use the certificateFactory i can only pass by parameter an InputStream, which is not what i need. Anybody can help me? Thank you in advance ...

how to convert object identifiers to hex strings

Is there any [non programming language specific] way to get hex versions of object identifiers? ex: OID 1.2.840.10040.4.1: dsa hex string = 2a 86 48 ce 38 04 01 there doesnt seem to be an easy to access list for them. im looking for the OIDs used in X509 certificates ...

Soap body is not encrypted when X509 security implmented on WCF service

I implemeted a WCF service and a client application for one of projects for my employer and currently facing a serious problem due to the soap body element. The issue is the soap body is not getting encrypted and only the header is encrypted. I am grateful to anyone who can help to resolve this issue. I can send the code for this if anyo...

Generate X509Certificate from byte[]?

Is there a possibility to generate an java.security.cert.X509Certificate from an byte[]? ...

How to recognize x509 flags

Is there any way to tell the difference between data after flags and sub-flags after the flag? in a yahoo certificate i exported, there is a section with a0 2d a0 2b ..., where its all flags. on the other hand, the subject key ID is "a0 1e 6e 0c 9b 6e 6a eb d2 ae 5a 4a 18 ff 0e 93 46 1a d6 32". how would i tell the difference between whi...

Reading RSA Private Key in PEM format And Reading public Key from certificate

I'm trying to use a PEM(X.509) certificate (stored in a privateKey.pem file on disk) to sign messages.After that i need to verify signature by using certificate (sent to the receiver). Help with this, especially example code in c# and RSA algorithm ...

Preventing Duplication of the x509 Certificate Used on a WCF Client?

I have a WPF and WCF app that requires to install the certificate (.pfx) on the client side to enable WPF calling the WCF service. Now how can I prevent the client to export the certificate from his certificate store (so that he won't be able to grab the .pfx file and install it on another client computer)? ...

How can I access user-installed keys and certificates from my Android app?

I've been struggling to consume user installed identity CA certs from a p12 file on an SD card. The certs and keys are installed using the Secure Credential Storage (Location & Security > Install from SD card). I haven't found any documentation stating the location if the keys and certificates once imported. I tried to create an inst...

get X509Certificate serial number

Hello experts, I need to get serial number of x509 certificate. The result of usage "certificate.getSerialNumber()" differs from the expected. As I see X509 certificate file specs, it should go in following format: Certificate ::= SEQUENCE { tbsCertificate TBSCertificate, signatureAlgorithm AlgorithmIdent...

receiving X509 client certificates in web requests

I am trying to send an X509Certificate from an Http Handler to a web service that will receive and read the certificate to authenticate the user. I know the certificate is sending fine; I have a tester that lets me look at the HttpWebRequest before sending, and the ClientCertificates property shows that it has a certificate attached. (e...