EldoS | Feel safer!

Software components for data protection, secure storage and transfer

TElFileCertStorage problem

Also by EldoS: CallbackDisk
Create virtual disks backed by memory or custom location, expose disk images as disks and more.
#351
Posted: 05/31/2006 05:42:42
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

Hi,

I'm loading a certificate (pfx) into a telfilecertstorage using copyprivatekey=true; when it's loaded, it says that the privatekey is present; but when i unmount the filestorage and remount it, it doesn't have the privatekey!! (and also, the filesize of the file is 1400 when it should be 2500 +-) so it isn't saving the privatekeys.

What can i do? is it a bug?

P.S.: it also happens in your certificate - sample
#352
Posted: 05/31/2006 05:43:39
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

Oh my god, i always forget to say important data. I'm now using: 4.4.0.86 VCL Edition on Delphi 7.0
#353
Posted: 05/31/2006 05:54:13
by Ken Ivanov (EldoS Corp.)

TElFileCertStorage uses PKCS#7-compliant files for storing certificates. PKCS#7 format is usually used for storing a set of *public* certificates (e.g., root CA's) and is not intended for storing private keys. Please consider using LoadFromStreamPFX/SaveToStreamPFX methods of certificate storage objects for storing certificates along with the private keys.
#354
Posted: 05/31/2006 05:57:56
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

And can I use SaveToStreamPFX/LoadFromStreamPFX method over a PKCS#7 file? or should i make another file for storing private keys?. Can you provide me some pseudocode or code to handle this two files (or the pkcs#7 file). Which is the better way to do this?
#355
Posted: 05/31/2006 06:00:18
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

Another thing i've just looked... can i dump telmemoryCertStorage to a file? is it a stream that i can dump? or isn't this possible?
#356
Posted: 05/31/2006 06:02:35
by Ken Ivanov (EldoS Corp.)

Actually, TElFileCertStorage is a bit obsolete. We recommend you to use TElMemoryCertStorage component along with its SaveToStreamPFX/LoadFromStreamPFX methods. This will allow you to store a set of certificates along with the corresponding private keys in a single file.
Also by EldoS: CallbackFilter
A component to monitor and control disk activity, track file and directory operations (create, read, write, rename etc.), alter file data, encrypt files, create virtual files.

Reply

Statistics

Topic viewed 4947 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!