1

Does VeriSign allow developers to obtain "sandbox" digital certificates which can be used in development, much like PayPal allows developers to set up sandbox accounts?

Furthermore, does anyone have an implementation in C# about how a client can send the certificate to a server, and the server checks with VeriSign that the digital certificate is valid?

Vadim Kotov
  • 8,084
  • 8
  • 48
  • 62
Matthew
  • 4,477
  • 21
  • 70
  • 93
  • 1
    I believe the client-cert to server-cert mapping needs to happen at the IIS level. Although there is a way to specify cert needs in the web.config file for WCF style of communications. – Philo Apr 23 '13 at 17:11

1 Answers1

1

You don't check with verisign, you use normal certificate validation (as you would with any other certificate).

A "sandbox" certificate is a self-signed certificate. You trust yourself (add your own certificate to the trusted root store) and so the certificate you signed yourself is trusted too.

dtech
  • 13,741
  • 11
  • 48
  • 73
  • you can use free softwares to create these self-signed certs. http://technet.microsoft.com/en-us/library/cc753127%28v=ws.10%29.aspx – Philo Apr 23 '13 at 17:12
  • I need to simulate a system preferrably using VeriSign though. So VeriSign does not offer a free service for developers so that they can test their applications before deployment? – Matthew Apr 23 '13 at 17:14
  • 1
    They don't, as there isn't an easy way to create a sandbox certificate because that certificate can easily be abused, e.g. to do a MITM. Furthermore, it doesn't matter that Verisign is your CA. In fact it is very unwise to code specifically against VeriSign because that means you can never switch CA's – dtech Apr 23 '13 at 22:53
  • @dtech Thank you for your response dtech :) I appreciate it immensely :) – Matthew Apr 24 '13 at 07:40