 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
VB Forum / Win API / May 2007Getting X509 Certificates from PKCS#7
Im using the CAPI revocation function CertVerifyRevocation and writting my own DLL to replace the default behaviour. Basically I have a third party Authentication Server which provides Path building and Revocation services, therefore I want all clients to utilise my server. 1) I have written a configuration app which points to teh URL of the Server (DONE) 2) I have written the DLL which CAPI calls i.e. CertVerifyRevocation() and its call as the first default provider (DONE) 3) Tested sending X509 Certificates to the Authentication server over SOAP (DONE) 4) Support for passing PKCS#7 certificates - ummm problem. How do I get the X509 Certificates from the PKCS#7? I also have an issue where the authentication server can only test a SINGLE certificate at a time - hence I need to get each cert and send it seperatley (and then process the responses in turn - this is crap, and I fully intend to address this when I can sort this issue out, I just need a proof of concept example. What I have gathered so far: Cryptoqueryobject - I think this can help me - but seems tied to system stores. I want to get the PKCS#7 and extract the X509 Certificates from it, then send them to the authentication server for revocation checking (path building is perform by default (which is also not ideal)) - i have digressed here a little, but im trying to give a better overview of the issue I face and why I need such a solution. I would be greatful for any advice on this, also I cannot guarantee that I have CAPICOM available on the client machines, therefore a solution does have to be provided via VC 2005 standard Crypto librarys. I look forward to any suggestions....cheers in advance. jaslong@hotmail.com schrieb im Beitrag <1180123346.255188.301490@q75g2000hsh.googlegroups.com>... > also I cannot guarantee that I have CAPICOM available on the client > machines, therefore a solution does have to be provided via VC 2005 > standard Crypto librarys. That sounds to me as if you are looking for a solution in VC 2005. In this case you have asked your questions in the wrong group since this group deals with MS Visual Basic <= 6 (aka classic) as shown by the "vb" in its name. It is very doubtful that you will be able to work with "VC 2005 standard crypto libraries" in VB <= 6...  Signature---------------------------------------------------------------------- THORSTEN ALBERS Universität Freiburg albers@ uni-freiburg.de ---------------------------------------------------------------------- On May 25, 9:17 pm, "Thorsten Albers" <alber...@MOVEuni-freiburg.de> wrote: > jasl...@hotmail.com schrieb im Beitrag > <1180123346.255188.301...@q75g2000hsh.googlegroups.com>... [quoted text clipped - 16 lines] > uni-freiburg.de > ---------------------------------------------------------------------- Opps!!!! CAPICOM can be distributed with your application; see http://msdn2.microsoft.com/en-us/library/Aa382434.aspx. For "VC 2005 standard Crypto libraries" you are in the wrong group (and native CryptoApi is very hard from VB6). And if you're using a .NET compiler, why not use the .NET framework's support? Under CAPICOM, you can merely iterate through the Certificates collection retrieved from the Store object. See "Using Certificate Stores" in the Platform SDK under "Using CAPICOM" for samples using various sources (you didn't say what yours was). > Im using the CAPI revocation function CertVerifyRevocation and > writting my own DLL to replace the default behaviour. Basically I [quoted text clipped - 35 lines] > > I look forward to any suggestions....cheers in advance. |
Reply to this Message |
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2009 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.