Stack Overflow
Stack Overflow

Questions tagged [certificate-revocation]

Certification Revocation is a process through which we make sure that certificates that are no longer valid are not used by the relying clients

137 questions
0
votes
1 answer

Auto revocation of distribution certificate

My role is member in apple developer program. I had been given distribution certificate and adhoc provisioning profile. I released the app but later on certificate has been revoked. I am wondering what would have caused this ? As far as I know…
Appu
  • 136
  • 3
  • 14
0
votes
2 answers

X509Chain.Build() succeeding for revoked certificate. C#

I create a certificate request like this: certreq -new req.inf req-Revoked.req certreq -submit -attrib "SAN:email=ttesting@Test.Domain&upn=1234567890@Test.Domain" -config Win2K8-64\Test-Win2K8-64-CA req-Revoked.req testerCert-Revoked.cer certreq…
ChopperCharles
  • 747
  • 2
  • 9
  • 19
0
votes
1 answer

How do I extract the list of serial numbers from a Certificate Revocation List in C# without using third party libraries?

I've connected to a MS PKI Certificate Revocation List distribution point and obtained the CRL What's the most straightforward way to extract the list of serial numbers from the CRL without using third party libraries?
Recalcitrant Caprine
  • 43
  • 1
  • 6
0
votes
1 answer

TFS 2015 SSL certificate could not be checked for revocation

I am using TFS 2015, I have a Release definition created for my test environment. A task for "PowerShell on Target Machines" has been added. The values are all entered correctly for this such as Machines, Admin Login, Password. HTTPS is the…
NLopez
  • 1
  • 1
0
votes
0 answers

Adobe Reader: time stamp embeded into signature requires download of revocation information after NextUpdate time

In my case users need to be able to off-line validate PDF files using Adobe Reader DC in a network environment where Internet access is prohibited. Also long-term archival is expected by embedding revocation information and protecting them with…
Daniel
  • 1,391
  • 2
  • 19
  • 40
0
votes
0 answers

Adobe Reader time stamp certificate revocation checking

I am trying to figure out the revocation checking algorithm in Adobe Reader or Acrobat. When I have a time stamp embedded into a signature then time stamp certificate's revocation is checked according to the current time. However, when I have a…
Daniel
  • 1,391
  • 2
  • 19
  • 40
0
votes
4 answers

Extract properties from a CRL file using C#

I'd like to write a program which monitors CRL (Certificate Revocation List) expiration date. Therefore, I'd like to read the following properties from a CRL file: 1) Effective Date 2) Next Update 3) Next CRL Publish How can I accomplish my…
StackNewbie
  • 40
  • 1
  • 5
0
votes
1 answer

Java - How does SSL verify certificate revocation status?

I know there are two different ways, CRL's and OCSP - I am researching where exactly in Java's SSL source code (openjdk) that these checks are performed. As far as I can ascertain these checks are performed somewhere within the…
Spartan9209
  • 549
  • 5
  • 10
0
votes
1 answer

IIS 8.5 Ignoring revoked certificates in CRL and serving pages to certificates that are revoked

I am currently struggling with an issue which I am now led to believe is being caused by IIS. I am currently testing a self signed PKI setup with a Root CA (MyNewCA), two signed Client Certificates (certificate1, certificate2) and a Revocation list…
user2616550
  • 113
  • 1
  • 9
0
votes
0 answers

At any point of time can a Certification Authority can Publish Multiple CRLs

I am implementing our project specific Certification Authority (CA). I have meet with a case like renewing CA's certificate. The problem is, We have very big system, and we are giving the Certs to Multiple components (we issues certs to thousands of…
Babji Kundateeri
  • 41
  • 6
0
votes
0 answers

Multiple intermediate CA servers sharing index.txt cert file

I have multiple intermediate CA servers creating certs. I can see these new certs been added to index.txt. My question is on cert revocation. If Server 1 creates a cert then server 1 goes down. Then I go to server 2 to revoke this cert how does…
cloonacool
  • 37
  • 8
0
votes
1 answer

Check certificate revocation status with Java

Is it possible to implement revocation checking on a digital certificate (a *.cer file) with a Java program, without any connection to the Internet by the program? I can download the CRL from a CA's web site and put it on the server where the…
user3573403
  • 1,780
  • 5
  • 38
  • 64
0
votes
1 answer

Using a Certificate Revocation List on a Closed Network (no Internet Access)

Our web application uses applets for many of its functions, and we are currently signing those applets with a CA issued certificate. The CA provides a Revocation List. Several of the sites using our application are closed networks, with no access…
Frank
  • 153
  • 12
0
votes
1 answer

Applet Certificate CRL Distribution Point LDAP URL with no host

I'm developing a web application that uses applets signed with a certificate issued by the customer CA. That certificate contains an URL to a CRL Distribution Point that does not define the host and port. The certificate attributes "CRL Distribution…
telmo.simoes
  • 11
  • 3
0
votes
1 answer

winVerifyTrust is crushed when the sys time is not accurate

I am developing a C# .net 3.5 application. I am trying to verify a file signature by using WinVerifyTrust. I also want a revocation check so I set the following parametrs of the WinTrustData. FdwRevocationChecks =…
user844541
  • 2,868
  • 5
  • 32
  • 60
1 2 3
9
10