EldoS | Feel safer!

Software components for data protection, secure storage and transfer

TElFileCertStorage problem

Also by EldoS: CallbackRegistry
A component to monitor and control Windows registry access and create virtual registry keys.
#351
Posted: 05/31/2006 05:42:42
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

Hi,

I'm loading a certificate (pfx) into a telfilecertstorage using copyprivatekey=true; when it's loaded, it says that the privatekey is present; but when i unmount the filestorage and remount it, it doesn't have the privatekey!! (and also, the filesize of the file is 1400 when it should be 2500 +-) so it isn't saving the privatekeys.

What can i do? is it a bug?

P.S.: it also happens in your certificate - sample
#352
Posted: 05/31/2006 05:43:39
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

Oh my god, i always forget to say important data. I'm now using: 4.4.0.86 VCL Edition on Delphi 7.0
#353
Posted: 05/31/2006 05:54:13
by Ken Ivanov (EldoS Corp.)

TElFileCertStorage uses PKCS#7-compliant files for storing certificates. PKCS#7 format is usually used for storing a set of *public* certificates (e.g., root CA's) and is not intended for storing private keys. Please consider using LoadFromStreamPFX/SaveToStreamPFX methods of certificate storage objects for storing certificates along with the private keys.
#354
Posted: 05/31/2006 05:57:56
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

And can I use SaveToStreamPFX/LoadFromStreamPFX method over a PKCS#7 file? or should i make another file for storing private keys?. Can you provide me some pseudocode or code to handle this two files (or the pkcs#7 file). Which is the better way to do this?
#355
Posted: 05/31/2006 06:00:18
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

Another thing i've just looked... can i dump telmemoryCertStorage to a file? is it a stream that i can dump? or isn't this possible?
#356
Posted: 05/31/2006 06:02:35
by Ken Ivanov (EldoS Corp.)

Actually, TElFileCertStorage is a bit obsolete. We recommend you to use TElMemoryCertStorage component along with its SaveToStreamPFX/LoadFromStreamPFX methods. This will allow you to store a set of certificates along with the corresponding private keys in a single file.
Also by EldoS: Rethync
The cross-platform framework that simplifies synchronizing data between mobile and desktop applications and servers and cloud storages

Reply

Statistics

Topic viewed 4397 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!