pkcs#7

问题 I am a software developer in charge of a project to digitally sign text files with PCKS#7. There is a third party in charge of analysing the signed file to tell us if it's correct or not. The issue I'm having is that they say the signer info does not contain a timestamp. They assured me I do not need to hire an outside trusted server for the timestamp, that the server's timestamp would be enough. I have scoured the internet and came up with the following code to try and add the timestamp but

问题 I am a software developer in charge of a project to digitally sign text files with PCKS#7. There is a third party in charge of analysing the signed file to tell us if it's correct or not. The issue I'm having is that they say the signer info does not contain a timestamp. They assured me I do not need to hire an outside trusted server for the timestamp, that the server's timestamp would be enough. I have scoured the internet and came up with the following code to try and add the timestamp but

问题 I am a software developer in charge of a project to digitally sign text files with PCKS#7. There is a third party in charge of analysing the signed file to tell us if it's correct or not. The issue I'm having is that they say the signer info does not contain a timestamp. They assured me I do not need to hire an outside trusted server for the timestamp, that the server's timestamp would be enough. I have scoured the internet and came up with the following code to try and add the timestamp but

问题 This question is the continuation of that one. I also try to communicate with a 3rd party AS2 server. I use the same code as the author of that post. This code (the corrected version) is: private byte[] Sign(byte[] content) { CmsSigner cmsSigner = new CmsSigner(_cert); cmsSigner.SignedAttributes.Add(new Pkcs9SigningTime(DateTime.Now)); SignedCms signedCms = new SignedCms(new ContentInfo(content)); signedCms.ComputeSignature(cmsSigner, true); return signedCms.Encode(); } But I get the

问题 This question is the continuation of that one. I also try to communicate with a 3rd party AS2 server. I use the same code as the author of that post. This code (the corrected version) is: private byte[] Sign(byte[] content) { CmsSigner cmsSigner = new CmsSigner(_cert); cmsSigner.SignedAttributes.Add(new Pkcs9SigningTime(DateTime.Now)); SignedCms signedCms = new SignedCms(new ContentInfo(content)); signedCms.ComputeSignature(cmsSigner, true); return signedCms.Encode(); } But I get the

问题 I'm extracting features from Android .APK files with androguard and right now I need to extract the serial number(*) from its signature file (usually CERT.RSA). I've found asn1crypto, but I don't quite understand, how to use it with pkcs7. So is there any python package suitable for this purpose? (*): 回答1: Comment : I have pkcs7 as a memory object, not a file PyOpenSSL does not read from file ! OpenSSL.crypto.load_pkcs7_data(type, buffer) Load pkcs7 data from the string buffer encoded with

问题 I'm extracting features from Android .APK files with androguard and right now I need to extract the serial number(*) from its signature file (usually CERT.RSA). I've found asn1crypto, but I don't quite understand, how to use it with pkcs7. So is there any python package suitable for this purpose? (*): 回答1: Comment : I have pkcs7 as a memory object, not a file PyOpenSSL does not read from file ! OpenSSL.crypto.load_pkcs7_data(type, buffer) Load pkcs7 data from the string buffer encoded with

问题 I'm extracting features from Android .APK files with androguard and right now I need to extract the serial number(*) from its signature file (usually CERT.RSA). I've found asn1crypto, but I don't quite understand, how to use it with pkcs7. So is there any python package suitable for this purpose? (*): 回答1: Comment : I have pkcs7 as a memory object, not a file PyOpenSSL does not read from file ! OpenSSL.crypto.load_pkcs7_data(type, buffer) Load pkcs7 data from the string buffer encoded with

问题 Is there any way to pass extra authenticated attributes for a PKCS#7 signed message using openssl? I'm stuck with the command-line. I'm currently using : openssl smime -sign -outform DER -md sha1 -binary -signer my.crt -inkey my.key I did not find any releveant option in openssl cli help. More info : I'm currently trying to build a SCEP (http://tools.ietf.org/pdf/draft-nourse-scep-23.pdf) server in NodeJS. SCEP spec requires to build PKCS#7 signed pkiMessages , The SignerInfo MUST contain a

问题 Is there any way to pass extra authenticated attributes for a PKCS#7 signed message using openssl? I'm stuck with the command-line. I'm currently using : openssl smime -sign -outform DER -md sha1 -binary -signer my.crt -inkey my.key I did not find any releveant option in openssl cli help. More info : I'm currently trying to build a SCEP (http://tools.ietf.org/pdf/draft-nourse-scep-23.pdf) server in NodeJS. SCEP spec requires to build PKCS#7 signed pkiMessages , The SignerInfo MUST contain a