EldoS | Feel safer!

Software components for data protection, secure storage and transfer

problem with sample CertDemo and ECDSA

Also by EldoS: CallbackDisk
Create virtual disks backed by memory or custom location, expose disk images as disks and more.
#21840
Posted: 10/05/2012 04:52:30
by Andy Calvert (Standard support level)
Joined: 11/07/2007
Posts: 16

Running the provided sample CertDemo with SecureBlackBox 9.1.27

When I choose to create a new Certificate Signing Request and then select to create using ECDSA with a curve of secp192r1, the generation then fails with a 'Bad Key Material' error in RequestGenerator.Execute().

I am finding the EC support rather patchy. The low level EC routines seem to work perfectly well, but the higher level certificate methods do not seem to yet support EC as well as they do RSA.

Any advice to make the demo (and hence possibly my own) code work ?
#21841
Posted: 10/05/2012 04:57:55
by Vsevolod Ievgiienko (EldoS Corp.)

Thank you for contacting us.

Could you try the latest 10th version: https://www.eldos.com/sbb/download-prerelease.php
#21842
Posted: 10/05/2012 06:11:22
by Mykola Olshevsky (Basic support level)
Joined: 07/07/2005
Posts: 450

Hi. Thanks for pointing us on this problem.
Actually the problem is in certificate demo, not in the library. It incorrectly sets public key algorithm in Request.Generate call.
Updated demo will be included into the next SBB update.

Also please note that in CertificateRequest.Generate elliptic curve is chosen according to Bits parameter, update .Generate() method will also be included in one of the next builds.
#21843
Posted: 10/05/2012 09:08:16
by Andy Calvert (Standard support level)
Joined: 11/07/2007
Posts: 16

An updated Generate() would definitely be good, being able to specify precisely the required curve. Thanks for the update.

Reply

Statistics

Topic viewed 623 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!