EldoS | Feel safer!

Software components for data protection, secure storage and transfer

Error 8194 Secret key not found (during signing)

Posted: 12/20/2012 03:23:14
by AdValvas Europe (Premium support level)
Joined: 12/18/2012
Posts: 14


We work with SBB v10.0.230.

Just FYI We recently discussed with you. We retrieve secure keys from a remote storage, using Safenet HSM's Cryptoki.dll. We had a problem using C_GetSlotList (error CKR_ARGUMENTS_BAD in function C_GetSlotList), which we could bypass (for now) by using a more recent SecureBlackbox_PKCS11Proxy.dll only for cases where we use SBB v10.

We now have a new problem with v10 when we are trying to sign documents. We are testing this with your CryptoTokenDemo tool, getting the list of certificates (this functions correctly), but when we try to Sign (hitting the button) we get an error 8194 "Secret key not found".

Again, with SBB v6 this works perfectly. With v10 (using the v10 included demo, which is pretty much the same code) we get the above error.

Can you help us out?

(PS. I did not find information on this error in your knowledge base, and the 3 forum issues I found for "Secret key not found" were not related to signing as far as I could see).
Posted: 12/20/2012 03:40:55
by Ken Ivanov (Team)


I suspect that the issue is related to key matching. As there is no universal method to establish whether public and private keys belong to the same keypair, the components are forced to use a sort of heuristics if they are uncertain about key correspondence. Heuristics methods changed between versions, so it is possible that you get different results on V6 and V10.

Please try to add the pcsoWeakenedKeySearchCriteria to the PKCS11Options property of the storage object before opening it and check if it helps:

Storage.PKCS11Options = Storage.PKCS11Options | SBPKCS11Base.Unit.pcsoWeakenedKeySearchCriteria;
Posted: 12/20/2012 03:41:05
by Eugene Mayevski (Team)

If you have a license, please assign the license ticket to your user account before we continue. The ticket itself and the procedure of its use are specified in the registration e-mail that was sent to you upon license purchase. If you don't have the license ticket, please contact the person from which you have obtained the license key (the one in your code) for a ticket.

NOTE: please don't post license keys and license tickets to the forum. If you need to clarify something about your license, please use HelpDesk ( http://www.eldos.com/helpdesk/ ).

Sincerely yours
Eugene Mayevski



Topic viewed 812 times

Number of guests: 1, registered members: 0, in total hidden: 0


Back to top

As of July 15, 2016 EldoS business operates as a division of /n software, inc. For more information, please read the announcement.

Got it!