public-key

Upon trying to implement Security.Framework SecKeyRawVerify iOS function from Apple's example, programm halts with bad pointer error (EXC_BAD_ACCESS code=2). Any help or suggestions would be appreciated. Here is my code: - (BOOL)verifySignature:(NSData *)plainText signature:(NSData *)sig { size_t signedHashBytesSize = 0; OSStatus sanityCheck = noErr; SecKeyRef publicKeyA = NULL; NSMutableDictionary * queryPublicKeyA = [[NSMutableDictionary alloc] init]; NSData * publicTag = [NSData dataWithBytes:publicKeyAIdentifier length:strlen((const char *)publicKeyAIdentifier)]; // // Set the public key

TL;DR: RSA public key generated in iOS and stored in the keychain, exported as base64 and sent to a java backend, is not recognized. I'm implementing a chat encryption feature in an iOS app, and I'm using symmetric + asymmetric keys to handle it. Without going too much into details, at backend I use the user's public key to encrypt a symmetric key used to encrypt and decrypt messages. I created two frameworks, respectively in Swift and in Java (backend) to handle key generation, encryption, decryption, etc. I also have tests for them, so I'm 100% everything works as expected. However, it looks

Using this code to retrieve the public key bytes... var pubKey = AppDomain.CurrentDomain.DomainManager.EntryAssembly .GetName().GetPublicKey(); What is this common structure at the start (first 32 bytes) of the key? It's not ASN.1 and it might not be variable. I can google it and get repeats. // 00 24 00 00 04 80 00 00 94 00 00 00 06 02 00 00 00 24 00 00 52 53 41 31 Is it all reversed or just part of it (e.g. the modulus at the end)? 52 53 41 31 is a string of RSA1 . My key's modulus is 1024 bit, so I was looking for something that described the length. 0x0400 ( 00 04 B.E.) would be 1024 (bits

I have created and downloaded a certificate from sales force , as per the instructions in PicketLink document . I downloaded the certificate and its name is mysample.crt and I imported the certificate into a keysotre. keytool -import -file mysample.crt -keystore keystore.jks -alias salesforce-idp To check, I exported the public key also keytool -export -alias salesforce-idp -keystore keystore.jks -rfc -file public.cert I have a Java code to get the Public Key, but it is not working. This is my Code package com.sample.keystore; import java.io.File; import java.io.FileInputStream; import java

In the current stable release of WinSCP, it seems that using SshHostKeyFingerprint is mandatory and there are no ways to connect to SFTP server without that in SessionOptions . I can see that the ability to bypass is added to the beta (5.2) but I was wondering whether or not it's possible to connect without this fingerprint. First, make sure you understand that you give-up any security , when you try to bypass SSH host key check. You effectively lose a protection against man-in-the-middle attacks . Anyway, you can use use SessionOptions.GiveUpSecurityAndAcceptAnySshHostKey . It's NOT

Why there are multiple signatures in this value? Are these values the public key of the package? Can I uniquely identify a package using this signature instead of reading the files under META-INF, or calculating an MD5 on the whole APK file? According to @hackbod, this is all the public keys the APK was signed with Despite its name, the contents of PackageInfo.signatures is the public keys your app is signed with. This absolutely, positively does not change between builds. This is the pure identify of the developer of the app. Reference: https://groups.google.com/d/msg/android-developers