EldoS | Feel safer!

Software components for data protection, secure storage and transfer

XaDES X-L

Also by EldoS: CallbackDisk
Create virtual disks backed by memory or custom location, expose disk images as disks and more.
#11020
Posted: 09/11/2009 06:16:31
by Datadec Online (Basic support level)
Joined: 09/09/2009
Posts: 29

Hi,

We are able to create a XaDES well signed document and now we are interested in adding X-L standard.

Any help will be welcome because the only thing we know is that we have to fill:

<xades: UnSignedSignatureProperties>
<xades: SignatureTimeStamp />*
<xades: CompleteCertificateRefs/>
<xades: CompleteRevocationRefs/>

Is there any example?

Thanks, regards,
Javier Gutiérrez
#11021
Posted: 09/11/2009 06:28:47
by Dmytro Bogatskyy (EldoS Corp.)

For adding a SignatureTimestamp use ElXAdESSigner.AddSignatureTimestamp method

Instructions for filling CompleteRevocationRefs described in the article: http://www.eldos.com/security/articles/4583.php
The CompleteCertificateRefs is filled in the similar way.
Please do the search in the forum: http://www.eldos.com/search/index.php...ficateRefs
#11024
Posted: 09/11/2009 08:18:30
by Datadec Online (Basic support level)
Joined: 09/09/2009
Posts: 29

Is there any example of using SBOCSPClient.TElFileOCSPClient object?

We like to know how to make an OCSP request to an OCSP server.
#11031
Posted: 09/11/2009 15:19:26
by Dmytro Bogatskyy (EldoS Corp.)

Quote
Is there any example of using SBOCSPClient.TElFileOCSPClient object?
We like to know how to make an OCSP request to an OCSP server.

You need to define an event handler for OnOCSPValidationNeeded event of TElFileOCSPClient class. The event will be used to pass the request to the application, which you need to send to the server and then pick the reply.
Please see the article: Create and send the OCSP request
#11041
Posted: 09/14/2009 04:25:34
by Datadec Online (Basic support level)
Joined: 09/09/2009
Posts: 29

Hi,

We have developed this:

oc = New SBHTTPOCSPClient.TElHTTPOCSPClient

Dim cert As TElX509Certificate
Dim cert2 As TElMemoryCertStorage
Dim cert3 As TElMemoryCertStorage
Dim cert4 As TElMemoryCertStorage
Dim httpc As SBHTTPSClient.TElHTTPSClient

cert = Certificado("0564")
cert2 = New TElMemoryCertStorage
cert2.Add(cert, True)

cert = Certificado("01")
cert3 = New TElMemoryCertStorage
cert3.Add(cert, True)

oc.CertStorage = cert2
oc.IssuerCertStorage = cert3
oc.URL = "http://va.safelayer.com:8094"

httpc = New SBHTTPSClient.TElHTTPSClient
oc.HTTPClient = httpc

Dim a As Short
Dim b As Byte() = {}
oc.PerformRequest(a, b)

cert4 = oc.ReplyCertificates

Running it cert4 has no certificates, a is set to 0 and b array has no elements. We notice that the code runs so fast, it seems that makes any connection to the URL provided but runs succesfully.

What's hapenning?

Regards,
Javier Gutiérrez
#11042
Posted: 09/14/2009 08:23:57
by Dmytro Bogatskyy (EldoS Corp.)

Quote
Running it cert4 has no certificates, a is set to 0 and b array has no elements. We notice that the code runs so fast, it seems that makes any connection to the URL provided but runs succesfully.

What does oc.PerformRequest returns?
What is the certificate status (CertStatus[])?
#11043
Posted: 09/14/2009 08:48:37
by Datadec Online (Basic support level)
Joined: 09/09/2009
Posts: 29

oc.PerformRequest runs to fast. It seems that my code needs something else in order to perform the request to the OCSP server but I don't know what else.

oc.PerformRequest returns 79874 value.
CertStatus is set to 2
#11050
Posted: 09/14/2009 11:09:40
by Dmytro Bogatskyy (EldoS Corp.)

Quote
oc.PerformRequest returns 79874 value.

It is SB_OCSP_ERROR_NO_ISSUER_CERTIFICATES error.
See: http://www.eldos.com/documentation/sb...codes.html
It means that not all certificates from the CertStorage have corresponding issuer certificate in the IssuerCertStorage, and so the request is not performed.
Could you please attach the public part of cert2 and cert3 certificates.
#11054
Posted: 09/15/2009 01:41:13
by Datadec Online (Basic support level)
Joined: 09/09/2009
Posts: 29

Hi,

Here you have both certificates.


[ Download ]
#11055
Posted: 09/15/2009 01:42:18
by Datadec Online (Basic support level)
Joined: 09/09/2009
Posts: 29

Rename de attached file to zip.
Also by EldoS: RawDisk
Access locked and protected files in Windows, read and write disks and partitions and more.

Reply

Statistics

Topic viewed 4074 times

Number of guests: 2, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!