digital-certificate

Is there a way to check if the SSL digital certificate is valid without installing on the web server?

故事扮演 提交于 2019-12-09 17:31:44
问题 Are there any tools or mechanism(s) which can help validate a CA issued SSL certificate before installing it on the target web server? 回答1: Yes, you can use openssl to create a test server for your certificate with the s_server command. This creates a minimal SSL/TLS server that responds to HTTP requests on port 8080: openssl s_server -accept 8080 -www -cert yourcert.pem -key yourcert.key -CAfile chain.pem yourcert.pem is the X.509 certificate, yourcert.key is your private key and chain.pem

How to read public key from PFX file in java

不问归期 提交于 2019-12-08 12:45:52
问题 I am able to read private key from PFX file but not public key. I am using following code to read public key. InputStream inStream = new FileInputStream(certFile); CertificateFactory cf = CertificateFactory.getInstance("X.509"); BufferedInputStream bis = new BufferedInputStream(inStream); // if (bis.available() > 0) { java.security.cert.Certificate cert = cf.generateCertificate(bis); System.out.println("This part is not getting printed in case of PFX file"); // } puk = (PublicKey) cert

PHP Digital Signatures

左心房为你撑大大i 提交于 2019-12-08 08:20:27
问题 I want to Digitally Sign an XML file with PHP using OpenSSL, so far I can generate an XML with all the information that I need, and I have a working demo that signs and verifys a signature (declaring the private and public keys as a string). I have a .cer file and a .key file that are files I want to use to sign the XML file. How can I achieve this? The goal is that the end user just uploads these certificates and downloads a signed XML. (Some concrete documentation about this is greatly

How export all my certificates of software separately to a .pfx file?

て烟熏妆下的殇ゞ 提交于 2019-12-08 05:26:45
问题 I want export programatically of a computer all my certificates of software separately to .pfx file to sign 2 new softwares that already are in final step of building in another pc. To make this i found a C++ code example (that after i translate to Delphi). My Delphi version still not was tested but even so i think that is working fine. program CertToPFX; {$APPTYPE CONSOLE} {$R *.res} uses Windows, WinCrypt, Classes, SysUtils; var CertContext: PCCERT_CONTEXT; CertPropId: DWORD; Data: array [0

Using SSL certificate for signing PDF files

点点圈 提交于 2019-12-08 03:16:54
问题 I have a SSL certificate for my application and I want to use it for digitally signing PDF files using iText. The extension of the certificate is .cer and is provided by a certificate signing authority (CA). The problem is that I am not able to convert this .cer certificate into java keystore which is required while signing the PDF using itext library. The code that I have is: This code obviously throws Invalid keystore format IOException. KeyStore ks = KeyStore.getInstance(KeyStore

Signing using iText, Adobe Reader reports “Signature was created using Not available.”

纵饮孤独 提交于 2019-12-08 00:48:04
问题 I am successfully signing documents using iText. However, any time that I check the "Advanced Signature Properties" in Adobe Reader I see that the "Signature was created using Not available." My question is, how can I use iText update this piece of information to then display properly in Adobe Reader or any other PDF reader? EDIT #1: An answer suggested using the PdfSignatureAppearance class's setSignatureCreator(String signatureCreator) (API and Source). This was not successful in updating

An error occurred while signing: Unknown error “-2147012894”

核能气质少年 提交于 2019-12-07 10:37:39
问题 I have .pfx certificate bought from https://www.globalsign.co.uk/. I've signed the ClickOnce manifest of my VSTO (Excel Add-In project type in Visual Studio) project with it and everything worked. After a month of use, I've tried to rebuilding my project (that used to work) and now it gives me an error: An error occurred while signing: Unknown error "-2147012894" The certificate is perfectly valid and not expired and signing manually like following works perfectly: SignTool sign /f mycert.pfx

Validating a signature without intermediate certificate

岁酱吖の 提交于 2019-12-06 23:04:52
问题 Is it possible to validate a signature only having an ancestor or root certificate in the hierarchy? Disclaimer: I'm a newbie to the certificates handling so please forgive the naive terminology. Consider the following situation. We have two parties (let's call them IdP for Identity Provider and SP for service provider) and some central certificate authority CA which is definitely trusted by both IdP and SP. CA has it's own certificate CertCA known to both IdP and SP (imported into IdP's and

Signing using iText, Adobe Reader reports “Signature was created using Not available.”

点点圈 提交于 2019-12-06 12:12:21
I am successfully signing documents using iText. However, any time that I check the "Advanced Signature Properties" in Adobe Reader I see that the "Signature was created using Not available." My question is, how can I use iText update this piece of information to then display properly in Adobe Reader or any other PDF reader? EDIT #1: An answer suggested using the PdfSignatureAppearance class's setSignatureCreator(String signatureCreator) ( API and Source ). This was not successful in updating the Signature Details in Adobe Reader. The result is the same as the screenshot included above. Here

how to generate digital signature with x509 certificate?

不羁的心 提交于 2019-12-06 03:45:30
问题 How do we get and append x509data and x509certificate tag to the xml produced by the following code String providerName = System.getProperty("jsr105Provider", "org.jcp.xml.dsig.internal.dom.XMLDSigRI"); XMLSignatureFactory fac = XMLSignatureFactory.getInstance("DOM", (Provider) Class.forName(providerName).newInstance()); Reference ref = fac.newReference("", fac.newDigestMethod(DigestMethod.SHA1, null), Collections.singletonList( fac.newTransform(Transform.ENVELOPED,(XMLStructure) null)), null
订阅 digital-certificate