EldoS | Feel safer!

Software components for data protection, secure storage and transfer

KeyUsage attribute for certificates

Posted: 07/09/2008 04:20:42
by Simone Ferrari (Basic support level)
Joined: 12/03/2007
Posts: 22

Hello, I am trying to determine, from a list, the certificates I can use for digital signing. The TElX509Certificate exposes the CanSign property however it's not clear how/when it will return true/false.

If the certificates are displayed using the windows certificate viewer, I would look into the KeyUsage attribute to determine if the certificate can be used for signing, is this what CanSign does?

I would like to get some information on this if possible.

Posted: 07/09/2008 04:35:17
by Mykola Olshevsky (Basic support level)
Joined: 07/07/2005
Posts: 442

Hi. No, CanSign property is used to determine if the certificate public key algorithm could be used for signing (i.e. it is RSA, DSS, RSA-PSS or so).
For your purpose you should use a property TElX509Certificate.Extensions.KeyUsage



Topic viewed 1096 times

Number of guests: 1, registered members: 0, in total hidden: 0


Back to top

As of July 15, 2016 EldoS business operates as a division of /n software, inc. For more information, please read the announcement.

Got it!