EldoS | Feel safer!

Software components for data protection, secure storage and transfer

Certificate lookup help

Also by EldoS: CallbackDisk
Create virtual disks backed by memory or custom location, expose disk images as disks and more.
#345
Posted: 05/30/2006 14:55:17
by Rajesh Kanungo (Basic support level)
Joined: 05/05/2006
Posts: 3

Hi,
I need some guidance ...
I have to lookup the set of certs given the issuer (CA) (e.g. verisign.com) and the serial numbers in "MY" on the Win32 platform. One way (brute force) is to iterate through all the certs in MY store, looking at the matches for issuer and serial number.

Is there a more efficient mechanism?

Also, is there a way to convert a CAPICOM Certificate object to an equivalent Eldos certificate object?

Thanks
#346
Posted: 05/30/2006 15:06:38
by Ken Ivanov (EldoS Corp.)

Quote
One way (brute force) is to iterate through all the certs in MY store, looking at the matches for issuer and serial number. Is there a more efficient mechanism?

Please consider using TElCertificateLookup component.

Quote
Also, is there a way to convert a CAPICOM Certificate object to an equivalent Eldos certificate object?

No. The only way to convert a certificate from CAPICOM object to corresponding TElX509Certificate instance is to save it to stream using CAPICOM and then load it from that stream using TElX509Certificate.LoadFromStream method.
#347
Posted: 05/30/2006 15:35:45
by Eugene Mayevski (EldoS Corp.)

Quote
Innokentiy Ivanov wrote:

One way (brute force) is to iterate through all the certs in MY store, looking at the matches for issuer and serial number. Is there a more efficient mechanism?

Please consider using TElCertificateLookup component.


In fact ElCertificateLookup iterates through all certificates too, so it doens't give speed improvement.


Sincerely yours
Eugene Mayevski
#348
Posted: 05/30/2006 15:54:31
by Ken Ivanov (EldoS Corp.)

Well, certificates stored in system certificate stores are not indexed, so searching for some particular certificate involves iteration in any case. ElCertificateLookup just makes this task easier to implement.
#349
Posted: 05/30/2006 21:39:16
by Rajesh Kanungo (Basic support level)
Joined: 05/05/2006
Posts: 3

Is it possible to find a piece of sample code to elucidate its usage? I searched through the Delphi/VCL samples and did not find any. Given the TElCertificateLookup class, how do I provide restrictions for issuer (CA) and/or serial number?

I think using the builtin functionality provided by your software, means fewer lines of code that has to be maintained by me or the poor souls following me :)
Also by EldoS: RawDisk
Access locked and protected files in Windows, read and write disks and partitions and more.

Reply

Statistics

Topic viewed 5663 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!