EldoS | Feel safer!

Software components for data protection, secure storage and transfer

PDFBlack Box implementation.

Also by EldoS: Solid File System
A virtual file system that offers a feature-rich storage for application documents and data with built-in compression and encryption.
Posted: 09/18/2006 12:47:53
by Chetan V (Basic support level)
Joined: 09/14/2006
Posts: 2


I am planning a web application that takes an input PDF, Digitally signs the input PDF using a self issued certificate and returns it to the user.

Taking into account that it is a web application, what would be the ideal location for the signing certificate. Should it kept as a physical file or is there any way to store it in the Database?

Any ideas are welcome.
Posted: 09/18/2006 13:05:20
by Ken Ivanov (EldoS Corp.)

If an attacker gets access to the signing machine, he will be able to access the certificate, be it stored either in a physical file or in any other place within the machine. The safest (almost unbreakable) place to store a certificate is hardware crypto token (however, this solution is relatively expensive and requires physical access to the server). The alternative way is to store the certificate in a system certificate store (making its private key non-exportable), but this solution is weaker than a hardware token.



Topic viewed 2261 times

Number of guests: 1, registered members: 0, in total hidden: 0


Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!