digital-certificate

Trusted root certificate is magically installed to Windows

元气小坏坏 提交于 2021-02-07 10:01:25
问题 On certain sites the certificate chain can not be built up to the trusted root certificate because this trusted root cert is not known to Windows. But if we visit such site using IE or Chrome, Windows automatically downloads (verified) the trusted root somewhere and silently installs it to Trusted Certificate Authorities storage. After this we can build the certificate chain up to the newly installed root. If we manually remove newly downloaded trusted root certificate from Windows storage,

Trusted root certificate is magically installed to Windows

怎甘沉沦 提交于 2021-02-07 10:00:13
问题 On certain sites the certificate chain can not be built up to the trusted root certificate because this trusted root cert is not known to Windows. But if we visit such site using IE or Chrome, Windows automatically downloads (verified) the trusted root somewhere and silently installs it to Trusted Certificate Authorities storage. After this we can build the certificate chain up to the newly installed root. If we manually remove newly downloaded trusted root certificate from Windows storage,

Signing documents with SunMSCAPI and suppressing the “Enter PIN” dialog

允我心安 提交于 2021-02-05 20:37:12
问题 I am developing a java code that signs documents using a certificate token. So far, everything works great, but I want to suppress the "enter pin" dialog because I am storing the user's pin so he/she does not need to type it every time. The real problem here is that this code will run in batch mode (no user interaction). I know that once typed, the key may be in memory so it does not need to be typed again for a shorty time. But I can't rely on that, I need to provide the PIN. Here the code I

java keystore file limitations

走远了吗. 提交于 2021-02-04 21:38:53
问题 I created a keystore file for my PFX certificates (PKCS#12), but I need to know how many keys can be stored in a keystore file (JKS). I'm currently loading the certificates as follows: KeyStore oStore = KeyStore.getInstance("PKCS12"); oStore.load(new FileInputStream(AppConfig.get(AppConfig.SRC_KEY)), "SECRET".toCharArray()); ... oStore.setKeyEntry(idAlias, privateKey, pwd.toCharArray(), chain); oStore.store(new FileOutputStream(AppConfig.get(AppConfig.SRC_KEY)), "SECRET".toCharArray()); Is

Obtaining the certificate chain

拈花ヽ惹草 提交于 2021-01-27 05:03:46
问题 I am working with X509 certificates in Java. Given a certificate is it possible to find all other certificates in the signing hierarchy until you reach the root certificate? I have a certificate file (with a .cer extension) and I want to extract the parent signing certificate. I want to keep finding the parent of that certificate untill I get the final root certificate, which is self signed. I have checked the X509Certificate certificate APIs and relevant APIs in java.security.cert but could

Request Client Certificate on JavaScript

纵饮孤独 提交于 2020-12-11 08:59:47
问题 The Objective I need to open this JavaScript certificate Modal on Browser to user select their Certificate (It's on Portuguese sorry): Then save it on my Action like this: [HttpGet] public ActionResult GetClientCertificate() { var requestCertificate = System.Web.HttpContext.Current.Request.ClientCertificate; ///Transform to byte[] and save on DataBase } The Problem I have spend a lot of time researching because it's my first contact to this kind of Technology, but no metter what I do, i can't

java.security.cert.CertificateParsingException: signed fields invalid

半城伤御伤魂 提交于 2020-08-24 09:18:28
问题 I'm trying to read a X509 certificate FileInputStream fr = new FileInputStream("suresh.pfx"); CertificateFactory cf = CertificateFactory.getInstance("X509"); X509Certificate c = (X509Certificate) cf.generateCertificate(fr); And run in to the exception java.security.cert.CertificateParsingException: signed fields invalid at sun.security.x509.X509CertImpl.parse(Unknown Source) at sun.security.x509.X509CertImpl.<init>(Unknown Source) at sun.security.provider.X509Factory.engineGenerateCertificate

How to add a web address to program details displayed in Control Panel - Default Programs

落花浮王杯 提交于 2020-01-17 03:59:15
问题 I am writing a program that can handle mailto: protocol. In order to allow user to select my program as a default email handler, I registered my program. However, I noticed that some, programs display clickable link to company web site under company name, for example File Explorer. How do I specify a link to my web site so that Default Programs UI shows it when my app is selected? I use Microsoft Visual Studio 2013 ultimate. Here's my program registration details in .reg format: Windows

Java program to verify digital signature signed by signtool

三世轮回 提交于 2020-01-15 08:06:10
问题 I have digitally signed a file(either .exe or .dll not a jar file) using SignTool. Signtool can also verify the digital signature. But my requirement is to check digital signature of file signed by signtool using java program. I searched on internet but didn't find any info. Could you please give me pointers regarding the same? Thanks for your suggestion. 回答1: Signing Code jarsigner -keystore c:/my.keystore -storepass ozziepassword e:/securityApplet.jar ozzie Verify Code: jarsigner -verify e:

Can SSL cert be used to digitally sign files?

元气小坏坏 提交于 2020-01-14 07:59:09
问题 I want to ask a thing about digital signing I am not very sure. Instead of creating a self signed certificate to use to sign some (PDF) files, I wanted to take my SSL cert which have my data already verified. But the question is: Can a SSL cert be used to digital sign files or is it incompatible in some manner? EDIT: To clarify, this question is not about how to sign PDFs, is only about if a SSL cert can be used (or converted in any way) to sign files. 回答1: To support digital signing