EldoS | Feel safer!

Software components for data protection, secure storage and transfer

Signature creation using PKCS#11

Also by EldoS: CallbackFilter
A component to monitor and control disk activity, track file and directory operations (create, read, write, rename etc.), alter file data, encrypt files, create virtual files.
#612
Posted: 07/04/2006 01:24:14
by Karsten Scheibe (Basic support level)
Joined: 07/03/2006
Posts: 5

Hi,

I'm trying to create a PKCS#7 signature for arbitrary data using PKIBlackbox, OpenSC's PKCS#11 library and a German signature smart card from Telesec.

I add the certificate from TElPKCS11CertStorage to an TElMemoryCertStorage and finally use TElMessageSigner to create the signature (with some authenticated Attributes).

Everything is working fine, but there is an small error in the ASN.1 structure of the resulting signature file. In my certificate there are two sequences (with OIDs 0.2.262.1.10.7.20 and 2.5.4.3), which belong to the same set. However in the last part of the signature both sequences are in their own set. Because of this some web services are not able to verify the signature. If I add both parts to the same set, verification works fine.

Is it possible to avoid this problem during signature creation or do i have to edit the signature afterwards?


[ Download ]
#613
Posted: 07/04/2006 03:02:57
by Ken Ivanov (EldoS Corp.)

Unfortunately, it is not possible to bypass this problem with the current version of SecureBlackbox. We will prepare a fix for this issue in one of the following build updates.

Thank you for reporting the problem.
#910
Posted: 08/01/2006 09:57:39
by Karsten Scheibe (Basic support level)
Joined: 07/03/2006
Posts: 5

Hi,

can you tell me when this issue will be fixed? I need it quite urgently.

Karsten Scheibe
#915
Posted: 08/01/2006 12:53:19
by Eugene Mayevski (EldoS Corp.)

The issue will be fixed in SecureBlackbox 5 beta. Most likely, there will be a beta on weekend.


Sincerely yours
Eugene Mayevski
#926
Posted: 08/02/2006 01:13:29
by Karsten Scheibe (Basic support level)
Joined: 07/03/2006
Posts: 5

Fine, thanks for the quick response.
#975
Posted: 08/09/2006 07:15:35
by Karsten Scheibe (Basic support level)
Joined: 07/03/2006
Posts: 5

Hi,

is the issue fixed in the new 5.0.95 beta? If so, is it possible to get the PKIBlackbox source code for this version? We have a license for PKIBlackbox.

Thanks,
Karsten Scheibe
#976
Posted: 08/09/2006 07:21:34
by Eugene Mayevski (EldoS Corp.)

Update information will be announced later today.

Innokentiy will tell you if the bug has been fixed already.


Sincerely yours
Eugene Mayevski
#977
Posted: 08/09/2006 07:26:29
by Ken Ivanov (EldoS Corp.)

Yes, this bug has been fixed already.
#978
Posted: 08/09/2006 08:33:41
by Karsten Scheibe (Basic support level)
Joined: 07/03/2006
Posts: 5

What about the source code for PKIBlackbox?
Is it only available for the final version or for the beta too?
#982
Posted: 08/09/2006 10:49:32
by Eugene Mayevski (EldoS Corp.)

It will be also available for betas, of course. We just need a day or two to setup upgrade program and related stuff.


Sincerely yours
Eugene Mayevski
Also by EldoS: Solid File System
A virtual file system that offers a feature-rich storage for application documents and data with built-in compression and encryption.

Reply

Statistics

Topic viewed 4972 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!