EldoS | Feel safer!

Software components for data protection, secure storage and transfer

TElFileCertStorage problem

Also by EldoS: Callback File System
Create virtual file systems and disks, expose and manage remote data as if they were files on the local disk.
#351
Posted: 05/31/2006 05:42:42
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

Hi,

I'm loading a certificate (pfx) into a telfilecertstorage using copyprivatekey=true; when it's loaded, it says that the privatekey is present; but when i unmount the filestorage and remount it, it doesn't have the privatekey!! (and also, the filesize of the file is 1400 when it should be 2500 +-) so it isn't saving the privatekeys.

What can i do? is it a bug?

P.S.: it also happens in your certificate - sample
#352
Posted: 05/31/2006 05:43:39
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

Oh my god, i always forget to say important data. I'm now using: 4.4.0.86 VCL Edition on Delphi 7.0
#353
Posted: 05/31/2006 05:54:13
by Ken Ivanov (Team)

TElFileCertStorage uses PKCS#7-compliant files for storing certificates. PKCS#7 format is usually used for storing a set of *public* certificates (e.g., root CA's) and is not intended for storing private keys. Please consider using LoadFromStreamPFX/SaveToStreamPFX methods of certificate storage objects for storing certificates along with the private keys.
#354
Posted: 05/31/2006 05:57:56
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

And can I use SaveToStreamPFX/LoadFromStreamPFX method over a PKCS#7 file? or should i make another file for storing private keys?. Can you provide me some pseudocode or code to handle this two files (or the pkcs#7 file). Which is the better way to do this?
#355
Posted: 05/31/2006 06:00:18
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

Another thing i've just looked... can i dump telmemoryCertStorage to a file? is it a stream that i can dump? or isn't this possible?
#356
Posted: 05/31/2006 06:02:35
by Ken Ivanov (Team)

Actually, TElFileCertStorage is a bit obsolete. We recommend you to use TElMemoryCertStorage component along with its SaveToStreamPFX/LoadFromStreamPFX methods. This will allow you to store a set of certificates along with the corresponding private keys in a single file.
Also by EldoS: Callback File System
Create virtual file systems and disks, expose and manage remote data as if they were files on the local disk.

Reply

Statistics

Topic viewed 5970 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS business operates as a division of /n software, inc. For more information, please read the announcement.

Got it!