EldoS | Feel safer!

Software components for data protection, secure storage and transfer

ElPKCS11CertStorage simular class for Crypto API

Posted: 01/17/2009 13:42:58
by Arsen Gevorgyan (Standard support level)
Joined: 01/09/2009
Posts: 8

We are developing .NET applicaiton integrated with third party USB tokens.
Tones support both Crypto API and PKCS#11 interfaces. We use ElPKCS11CertStorage class and its "DLLName" property to initilize token's driver for PKCS. Our token provider provide us with Crypto API win32 DLL aslo.
My question is what is the ElPKCS11CertStorage's simular class for Crypto API, and how to initilize Crypto API DLL?
Posted: 01/18/2009 09:00:10
by Eugene Mayevski (Team)

You need to use TElWinCertStorage class which provides access to Windows Certificate storage.

Windows Certificate storage is not a single storage, but a "view" through which you can look at different storage places. The "view" is controlled by several properties such as SystemStores, PhysicalStores, AccessType etc. .

When the custom CSP (provided by your hardware vendor) maps the physical device to Windows Certificate storage, the mapping is seen as some special physical store (it's different for each provider so I can't tell you the name). What you need to do is use Enumerate*Stores() methods of TElWinCertStorage class and browse the output. Then choose what stores you need and use SystemStores and PhysicalStores properties to make the right "view".

Alternatively you can browse the contents of the storage using Certificates module of MMC (microsoft management console, mmc.exe). It shows physical stores.

Sincerely yours
Eugene Mayevski



Topic viewed 1227 times

Number of guests: 1, registered members: 0, in total hidden: 0


Back to top

As of July 15, 2016 EldoS business operates as a division of /n software, inc. For more information, please read the announcement.

Got it!