digital-signature

I am trying to create a digital signature for a block of Text. While I seem to be able to create a signature it is different from the digital test signature as required by our test cases. The code I am using is below. X509Store store = new X509Store(StoreName.My, StoreLocation.CurrentUser); store.Open(OpenFlags.OpenExistingOnly); X509Certificate2Collection certcol = store.Certificates.Find(X509FindType.FindByIssuerName, "eBusiness Development CA", false); if (certcol.Count > 0) { X509Certificate2 cert = certcol[0]; System.Security.Cryptography.RSACryptoServiceProvider privateKey = cert

I am working on a feature that needs me to digitally sign a short string in PHP, and verify the string's signature in C#. I would really like to use openssl_sign in PHP, because of its simplicity, but all the information I can find on Google indicates that this will not work. There are some external libraries that claim to do this well, however as this is a hobby project I would rather not purchase such a library. So what are the alternatives here? Full interoperability between C# and PHP is required. Libraries besides OpenSSL can be used. I've done something very similar using Bouncy Castle

A collegue and myself have been trying to understand how jwt tokens verify tokens, but from our reading we seem to be confusing ourselves. Please can someone help confirm whether my thinking is correct Tokens are signed using the private key. The signature is a combination of the header and payload encrypted using the private key and added to the jwt as the last part, the signature. In order to verify the token the receiver can replicate this process using the public key. They encrypt the header and payload to see if it the same as the signature. Note this is not decryption. The receiver is

I'm using OpenSSL to generate a Certificate Service Request (CSR). The standard fields are: Common Name: John Doe Organization: MyCompany Inc. Organization Unit: Sales Locality: SF State: CA Country: US Email: john.doe@mycompany.com However I want to add my own fields to the certificate such as: GroupId: 348348923 EmployeeLevel: Class 3 What is the proper way to do this before I request the Certificate Authority (CA) sign the CSR? All the fields you're describing are subject items in an X509 CSR. They're actually OIDs (usually displayed by their given short name). You can find a list of them