x509

I'm signing a dot net exe using signcode.exe with an spc/pvk combo The file needs to read its own Public Key at runtime in order to verify some data. I've gone down a number of different avenues. I've tried X509Certificate executingCert = X509Certificate.CreateFromSignedFile(exe); executingCert is then null. I'm guessing signcode isn't creating an X509 signed file, though if there's a switch to change that I'm happy to go that way. edited Turns out the above does work.... I had my null check backwards (!= != ==) :) Assembly asm = Assembly.GetExecutingAssembly(); string exe = asm.Location;

The problem Create and install temporary certificates to sign code in my development environment. This has to be done with an unattended script (without user interaction). The legacy script Right now, I have this script that creates the certificates using the deprecated tool makecert : makecert -r -pe -n "CN=My CA" -ss CA -sr CurrentUser -a sha256 -cy authority -sky signature -sv MyCA.pvk MyCA.cer certutil -user -addstore Root MyCA.cer certutil -addstore Root MyCA.cer makecert -pe -n "CN=My Company" -a sha256 -cy end -sky signature -ic MyCA.cer -iv MyCA.pvk -sv MySPC.pvk MySPC.cer pvk2pfx.exe

I need to generate a proof of possession, signing a verification code with my private key. I did not find a question related to this, here in Stack Overflow, and I am not finding some reference on Internet. I am following this tutorial , but I want to use OpenSSL. My verification code is related to a X509 certificate, like this: 7A69A4702DA903A41C3A5BC5575A8E3F49BEC5E5BA2D4CE1 I got the answer with the Azure support team. I already had my root key and X509 cert, generated with the following command: openssl req -x509 -newkey rsa:2048 -keyout root_private.pem -nodes -out root_cert.pem Then, I

I am struggling with the following issue: I have a CSR which I am signing with this code: @Override public X509Certificate signCSR( Reader pemcsr, int validityDays ) throws APIException { try ( PEMParser reader = new PEMParser( pemcsr ) ) { KeyStore keystore = getKeyStore(); Properties cryptoProps = getCryptoProperties(); String caKeyAlias = cryptoProps.getProperty( PROPERTY_KEYSTORE_CA_CERT_ALIAS ); String caKeyPassword = cryptoProps.getProperty( PROPERTY_KEYSTORE_CA_CERT_PASSWORD ); PrivateKey cakey = (PrivateKey) keystore.getKey( caKeyAlias, caKeyPassword.toCharArray() ); X509Certificate

I tried to generate a self-sign certificate to my server for multiple domains. I used openssl basing in v3_req extension. I used this command line to generate certificate with multiple domain and extended key usage: openssl x509 -req -days 3650 -in san_domain_com.csr -signkey san_domain_com.key -out san_domain_com.crt -extensions v3_req -extensions mysection -extfile openssl.cnf It's result that my certificate contains the multiple domain but not the extended Key Usage for serverauth and the clientauth also my website is only accessible from Firefox. Does someone have idea about this? Thank

Okay, so look at this diagram . There are two little boxes, that signify how a given profile should be signed. In Phase 2, step 1, it says "Apple issued certificate", but it doesn't say which apple issued certificate (they issue more than one). I have tried my developer certificate and the MDM (APNS) certificate. It wasn't one of those. Is there a third magic certificate I somehow need (and how do I get it)? In Phase 3, step 2, it says "Identity certificate", but again it's a little sketchy on the details. The only identity certificate I know of is installed on the device, using the device's