EldoS | Feel safer!

Software components for data protection, secure storage and transfer

SET and S/MIME

Also by EldoS: BizCrypto
Components for BizTalk® and SQL Server® Integration Services that let you securely store and transfer information in your business automation solutions.
#8395
Posted: 12/08/2008 03:11:23
by Mohammad Khorsandi (Basic support level)
Joined: 05/05/2008
Posts: 34

Can I generate certificate in SET type or S/MIME or Authenticode with SBB?

thanks.
#8396
Posted: 12/08/2008 03:20:54
by Eugene Mayevski (EldoS Corp.)

S/MIME and Authenticode are intended *usages* of the X.509 certificate and you can create them by setting KeyUsage and ExtKeyUsage fields appropriately. As for SET type - I have no idea what it is.


Sincerely yours
Eugene Mayevski
#8399
Posted: 12/08/2008 04:44:07
by Mohammad Khorsandi (Basic support level)
Joined: 05/05/2008
Posts: 34

thanks,
Which one of these properties use for S/MIME or Authenticode?

KeyUsage:
DigitalSignature
NonRepudiation
KeyEncipherment
DataEncipherment
KeyAgreement
EncipherOnly


ExtendedKeyUsage:
ServerAuthentication
ClientAuthentication
CodeSigning
EmailProtection
OCSPSigning


#8400
Posted: 12/08/2008 05:02:25
by Eugene Mayevski (EldoS Corp.)

Authenticode uses DigitalSignature and CodeSigning

S/MIME uses DigitalSignature, KeyEncipherment, DataEncipherment and EmailProtection. Also S/MIME requires that the e-mails are specified in Subject and/or SubjectAlternativeName. You will find more information in the corresponding RFC.


Sincerely yours
Eugene Mayevski
#8433
Posted: 12/10/2008 06:56:43
by Mohammad Khorsandi (Basic support level)
Joined: 05/05/2008
Posts: 34

Thanks,
What SubjectRDNs must be uses in S/MIME and Authenticode?


About SET :

The Secure Electronic Transaction (SET) specifications [SET1; SET2; SET3] define a standard to support credit card payment transactions over distributed communications networks such as the Internet. Essentially, SET defines a standard payment protocol and specifies requirements that the supporting PKI is expected to meet.

SET adopts the X.509 Version 3 public-key certificate format, and it defines specific private extensions that have meaning only in a SET context. SET also levies certain profile requirements on the standard extensions. Figure 6.2 illustrates a SET certificate. Note that Figure 6.2 does not represent all the possible extensions. (For example, it does not represent the Hashed Root Key extension present in a SET root CA certificate.)


References : Understanding PKI: Concepts, Standards, and Deployment Considerations, Second Edition or [URL=http://en.wikipedia.org/wiki/Secure_electronic_transaction]Secure electronic transaction[/URL]

#8434
Posted: 12/10/2008 07:07:05
by Eugene Mayevski (EldoS Corp.)

Thank you for the pointer. As SET certificates are regular X.509 certificates, you will be able to use SecureBlackbox to create and manage such certificates. More detailed information can be obtained in the corresponding normative references (SET specifications).

We will be able to give you more assistance with your tasks under terms of our custom services.


Sincerely yours
Eugene Mayevski
Also by EldoS: Rethync
The cross-platform framework that simplifies synchronizing data between mobile and desktop applications and servers and cloud storages

Reply

Statistics

Topic viewed 1227 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!