Questions tagged [digital-signature]

0

votes
0

answer
48

Views

Call server-signing service with Base64 encoded certificate in DSS

I need to execute tok:sign request of DSS with a given certificate instead of an alias. certificate I tried to replace below one with a base64 string, but got following error in log. INFO | http-nio-8080-exec-3 | o.a.cxf.services.SoapSignatureTokenConnection.FAULT_OUT | FAULT_OUT Sample, original SO...
plaidshirt
1

votes
1

answer
51

Views

GPG Still sees good sign with revoked subkey still works

I have created a key, and created a subkey. With a subkey, I signed a file. Verification works. Revoked the key, verification does not hold. This is the expected behavior. However, If I try to sign with the same subkey and verify it still works. What am I doing wrong? Here is what am I doing in full...
Mustafa
0

votes
0

answer
4

Views

How to give alternate description for a field in Itext.?

I am trying to generate an accessible digitally signed PDF using iText. I am able to create a pdf with digital signature but it is not accessible. I suppose it is because there is no alternate description for the field "sig". How do i give the alternate description here? public class C2_01_SignHello...
CoolKicks
1

votes
1

answer
206

Views

Android jar is unsigned using valid keystore, needs SHA1 certificate?

I am attempting to generate a signed APK for my app. I'm using Android Studio to generate the release APK: build > generate signed APK. I then get a popup for my key store, alias, and passwords. This process has worked in the past but, I suspect, stopped working after a recent upgrade of tools and o...
Peri Hartman
1

votes
1

answer
2.6k

Views

RSA PKCS#1 compliant signature

I am using PKCS#1 2.0 (OAEP) standard (signature with appendix), but there are some issues not clear to me. What is the physical object that is beeing signed? I know it's hash function value and so on (I do know the algorithm), but is it calculated from the binary fform of the file, no matter what i...
Marc Andreson
1

votes
3

answer
438

Views

Signed applet loading signed jar reading file error

I'm working on a game at the moment and have made a JFrame loader which can load the game from the user.home directory, but recently decided I wanted it in a web applet as well. When I run the JFrame loader it successfully loads the game, checks the file and opens. (both game and JFrame are signed)...
Fallboo
1

votes
2

answer
2.5k

Views

How can I sign a file with PKCS11 in Python?

How can I sign a file with PKCS11 in Python? I'm looking for a way to sign a .txt file using a "Cryptographic Token Interface", but I haven't found a solution. My first idea was to use pycrypto, but the documentation has no mention of this.
Guilherme
1

votes
1

answer
1.6k

Views

Can't add ltv to PDF document. Error

I'm sign document, using Itext. I have that method: public static void sign(String src, String dest, Certificate[] chain,PrivateKey pk, String digestAlgorithm, String provider,CryptoStandard subfilter, TSAClient tsa ) { // Creating the reader and the stamper PdfReader reader = new PdfReader(src); Fi...
1

votes
3

answer
105

Views

Generate Data which is signed by a Private Key

I have data which is signed by a Private Key. Now how do I obtain the initial data which was signed? I went through many examples using Bouncy Castle but they were mainly for verifying if some data is signed by the right Private Key. CMSSignedData s = new CMSSignedData(new CMSProcessableByteArray(to...
DanMatlin
1

votes
1

answer
4k

Views

how to create a properties file for keystore?

I have created a key store and extracted the public key. In order to use key store I've created a keyproperties.properties file, but I'm not sure about the property called "PRIVATE". I'm totally confused whether that is a path or private key password or something else. properties file -> with .prope...
kerZy Hart
1

votes
1

answer
205

Views

How to intercept a file transfer communication and send a different file?

This is an interview question I couldn't solve: You have a client and a server. The client can send a file to the server, and the server executes the file. Here is the communication protocol: The client sends a HELLO command to the server The server sends a challenge to the client The client sends t...
Alon Gubkin
1

votes
1

answer
2.3k

Views

Verifying a signature with a public certificate [closed]

I'm studying the idea of signing and then verifying the signature of a message using OpenSSL. I have the signature part figured out, but I'm stuck verifying that same signature. Say that I have some plaintext in a file called plaintext.txt. I have the signature of the plaintext in signature.txt. Thi...
Alex
1

votes
1

answer
97

Views

Why does my applet have warning signs?

For some reason beyond my knowledge, my applet is displaying these little warning signs every time I interact with one of its controls. This does not happen when I use Applet Viewer, so I assume that this is happening since it's not signed. What is the reason and purpose for this annoying behavior,...
user3758041
1

votes
1

answer
1k

Views

Digital signature informations in .docx with C#

I'm working with .docx files in my application via DocX library which I use to edit some parts of document and parse templates. My problem is when client digitally sign document, I don't know how to get informations about signature. I need to check who signed document. I think that DocX library doe...
freshbm
1

votes
1

answer
861

Views

is PdfPKCS7.loadCacertsKeyStore() deprecated

Is the PdfPKCS7.loadCacertsKeyStore() deprecated in the last iText version 5.5.6? It seems yes, so my question is how to verify the authenticity of the certificate and the certificate chain without using load then apply PdfPKCS7.verifyCertificates like we did before? Any new sample code? Best regard...
Jamil Nour
1

votes
2

answer
80

Views

Is there a standard on how to sign primitive types?

I am designing a protocol to exchange IOUs (digital promissory notes). These should be digitally signed, but the signature should be independent from the data representation (whether its XML, JSON, binary, little or big endian numbers). Is there any standard on how to sign a list of strings and prim...
jederik
1

votes
2

answer
1.1k

Views

RSA key size less than 512 bits in Java

I have a legacy application that has hardcoded RSA key size to 384 bits and I need to be able to verify the signature of these keys in my Java application. Question: Is there a way to create and use RSA keys in Java with key-size less than 512? (I am fully aware that there is a reason to the restri...
Erik Pettersson
1

votes
1

answer
4.1k

Views

Java Security - X509 Certificate Verification with Public Key

I am working on a project has so much security operations. I have never struggled security issues before. Therefore, my question can be beginner level. In my problem, I am getting a byte array data has a certificate and some other parameters. I need to verify this certificate and its signature. But...
mismanc
1

votes
1

answer
1k

Views

How to properly verify data with rsa?

I want to sign a message with a private key and verify it with a public key, but I can't get it to work.. Here is how I sign the data (edited, but still not working): public static string SignData(string message, string privateKey) { byte[] plainText = ASCIIEncoding.Unicode.GetBytes(message); var rs...
Loading
2

votes
1

answer
1.4k

Views

Does Microsoft's CAPICOM ActiveX control support SHA-2?

Our company is switching over from using SHA-1 certificates to SHA-2 certificates. I noticed that CAPICOM only has a CAPICOM_CERTIFICATE_FIND_SHA1_HASH find method. Will switching over from SHA-1 to SHA-2 mean we will need to switch to an alternative to CAPICOM for verifiying/encrypting/decrypting u...
going
2

votes
1

answer
1.9k

Views

XML Digital Signature with Inclusive Canonicalization

I am trying to implement a routine for XML Digital Signature, and I am able to correcty calculate the hash of the information to be signed. However, I am facing problems with the signature itself, since I do not manage to create the real string to be signed. Right now I have this: </Canonicalization...
crypto
3

votes
1

answer
344

Views

I get 0x80070057 error code on certcreatecertificatechainengine func

I use visual studio 2013 and windows 7 32bit. I want to verify digital signature by root and chain of certificate. So I get 0x80070057 error code in certcreatecertificatechainengine(). bool result = false; HCERTCHAINENGINE hChainEngine; CERT_CHAIN_ENGINE_CONFIG C...
VOLVO
5

votes
1

answer
1.4k

Views

Convert message and signature to BouncyCastle CMSSignedData object

I have an X509CertificateObject, a matching RSAPublicKey and managed to create a byte array containing a valid digital certificate for some message object also as a byte array. Unfortunately the system I'm building upon only accepts CMSSignedData objects as input. How do I convert my basic building...
Thomas Lieven
2

votes
2

answer
469

Views

Pades Signature with multiple DSS Dictionaries

I'm working on a PDF Signer/Validator and don't know how I should handle pdf files with multiple signatures and dss dictionaries. Here is the scenario: A pdf file is signed twice, and after the second signature, a DSS dictionary is added with the CRLs, CERTs and OCSPs of both signatures: [ Signatur...
Diego Azevedo
17

votes
2

answer
14.8k

Views

Difference between openSSL rsautl and dgst

The following command generates a signature for an input file: openssl dgst -sha1 -sign privateKey.pem -out signature1 someInputFile The following commands also generates a signature for an input file: openssl dgst -binary -sha1 someInputFile > digest openssl rsautl -sign -in digest -inkey privateKe...
fishinear
17

votes
3

answer
18k

Views

Is there an easier way to sign an XML document in Java?

I'm trying to digitally sign an XML document using Java. I've got an implementation working with some references I've found that use various implementations in the javax.xml.crypto.dsig package. However, my current implementation is like many of the examples I've looked at - it's rather verbose and...
Rob Hruska
17

votes
3

answer
26.3k

Views

In C#, sign an xml with a x.509 certificate and check the signature

I'm trying to sign an XML file using a x.509 certificate, I can use the private key to sign the document and then use the CheckSignature method (it has an overload that receives a certificate as parameter) to verify the signature. The problem is that the user who validates the signature must have th...
willvv
17

votes
3

answer
14.9k

Views

What do I need to know about XML Signatures to get SAML working?

At work we have a web app that we'll need to interface with another company's web app using Single Sign On validated by SAML. Our web apps are written in PHP, and it's obviously irrelevant what language choice the other company is using. Nonetheless, I've needed to write a simple API that this other...
SoaperGEM
3

votes
1

answer
2.4k

Views

iText - Generating PDF hash without certificate chain

I'm trying to build an application where the following happens: A client requests a PDF-hash from the server. The server generates the hash of a PDF-file and sends this to the client. The client signs this hash with his private key and sends the signed hash along with the public part of his own cert...
Niels
3

votes
1

answer
1.2k

Views

verifying digital signature in c#

I have a signed "DLL" file that I want to validate his digital signature in run time ("Before I'm loading it") I have the public key of the certificate embedded in my code, Is there a way to get the "message digest" from the digital signature? or another way to validate the file hasn't manipulated?...
18

votes
4

answer
4.2k

Views

How can I validate digital signatures for Microsoft's Portable Executable format in portable code? [closed]

I am looking for sample code (or libraries) that can help me validate digital signatures for Windows PE files (.exe, .dll, .cab, .etc) on non-Windows platforms using C++. I am looking for a platform-independent approach. Thanks!
Jamaal Smith
18

votes
4

answer
12.1k

Views

How to validate if a signed jar contains a timestamp?

After a jar is signed and the -tsa option was used, how can I validate that the time stamp was included? I tried: jarsigner -verify -verbose -certs myApp.jar But the output does not specify anything about the time stamp. I'm asking because even if I have a typo in the -tsa URL path, the jarsigner su...
user199092
1

votes
1

answer
754

Views

What is the difference between e-signature and digital signature?

I want to know the difference between esignature and digital signature? I tried googling it and I got some information about digital signature and how they are authenticated. But what I am not able to understand is whether the same authentication process is valid for eSignature? If it's different t...
karthick
2

votes
1

answer
137

Views

How to go about signing text in a verifiable way from within ruby in a simple yet strong & portable way?

I have been looking for a portable method to digitally sign arbitrary text which can be placed in a document and distributed while maintaining its verifiable origin. Here is an example: a = 'some text' a.sign() # => The contents of a can now be distributed freely. If a receiver wants to check the v...
Roja Buck
2

votes
3

answer
465

Views

Simple digital signatures for regular users

I have a system which is a CRM of sorts, it essentially manages customers claims that they have been mis-sold insurance. This system is expected to handle a fairly high volume of claims and several call center desks have been enlisted to that effect. The general workflow of the system is; call cen...
Bella
2

votes
1

answer
53

Views

Sharing session data between two applications (Rails)

There is an existing application that a user logs into. At a certain point within the existing user workflow the new application I am working on takes over for the existing application and some data from the current session needs to be shared. I was given an idea of digitally signing the data to ens...
adamscott
19

votes
1

answer
2.9k

Views

Provide secure Facebook authentication with my Server

I would like to build a little mobile App (Android and iOS) and a little backend server with a REST Api. My app users (android or iOS) needs to login on facebook. I do that by using facebooks mobile sdk. When the login has been successful, facebook sdk will return a authentificationToken, that is no...
sockeqwe
1

votes
1

answer
904

Views

get original content of a pdf signed with itextsharp

I'm trying to get the original document of a signed PDF in order to compare it's hash with an stored doc. This is really easy when the document has several signatures, with acrobat reader you can go the previous revision of the document save it and that's it. Surprisingly this does not work with the...
Ivan BASART
19

votes
2

answer
1.2k

Views

How to retrieve digital signature information from PDF with PHP?

I have app that needs to retrieve some data (signer name) from digital signature "attached" on PDF files. I have found only examples in Java and C# using the iText class AcroFields method GetSignatureNames edit: I've tried pdftk with dump_data_fields and generate_fpdf and the result was that (unfort...
celsowm
2

votes
1

answer
268

Views

Distinguishing signed Java applets

I have a Java applet which doesn't need any special privileges to run (i.e, it runs fine in the sandbox), but which expects the user to enter some sensitive information. Therefore, I'd like the user to be able to verify the origin of the applet. I then signed the applet, and everything appears to be...
oggy

View additional questions