Highest Voted 'pki' Questions

3

votes

1 answer

PKI not choosable on Android-Phone

I try to login using PKI. I use this tutorial: http://release-manager.com/rest/images/12702 On firefox this works well. On Android-Smartphone this does not work (I tried several phones Android 6-11).EDIT: Fortunately Android 7.1.1 seems to…

asked Jul 12 '21 at 05:33

Grim

1,938
10
56
123

3

votes

2 answers

Python example to access a php site(HTTPS) protected by PKI

I am looking for a example code for how to implement a Python application to communicate with a php site over HTTPS and use PKI protection. I probably will use pyOpenSSL and httplib.HTTPSConnection. My question is where can I find a site that uses…

python https openssl pki

asked Jul 19 '11 at 06:50

Stan

37,207
50
124
185

3

votes

2 answers

Algorithm constraints check failed on signature algorithm: SHA256WithRSAEncryption

For sometime I am noticing following error consistently, when servers are trying to connect other services using https. What action is to be taken to resolve this. Interestingly, it is happening only on few…

java security ssl webserver pki

asked Jan 10 '21 at 22:35

YS_NE

194
2
21

3

votes

1 answer

What does "signing a certificate with another certificate" mean?

I am actually reading about certificates and certificate chains. I understand that a certificate is a piece of data which is signed by the private key of an entity and can only be decrypted by using the public key of the given entity (e.g. the root…

security ssl networking certificate pki

asked Dec 24 '20 at 10:59

Tobias von Falkenhayn

1,355
5
26
59

3

votes

1 answer

how to prove that someone's previous public key was really theirs?

I'm in the planning stage of an open-source credit clearing system, and my idea is to use GPG keys to sign IOUs. But I'm concerned that if Bob signs an IOU he emails to Alice, then later deletes his keys, creates a new keypair and uploads his new…

pki public-key

asked Jun 29 '11 at 20:06

jcomeau_ictx

37,688
6
92
107

3

votes

1 answer

How to manually calculate and verify the signature of a certificate signing request

I have created a keypair openssl genrsa -out test1 2048 then created a certificate signing request using that key openssl req -new -key test1 -subj "/CN=foo" -out foo.csr verifying that certificate using openssl req -in foo.csr -text It…

encryption openssl public-key-encryption public-key pki

asked Sep 15 '20 at 11:45

confused genius

2,876
2
16
29

3

votes

3 answers

CertUtil Import pfx failed: NTE_NOT_SUPPORTED

I am attempting to set the KeySpec flag on an existing certificate for use in a SQL server encryption role. Current KeySpec is 0, and I need it to be a 1. The way to do this is by first exporting the cert, its private key, and key usages into a…

sql certificate pki certutil

asked May 06 '20 at 18:31

The ITea Guy

225
1
3
8

3

votes

2 answers

TLS certificate subject (CN, OU and O)

I'm a newbie with Hashicorp Vault and PKI so bear with me :) I've recently set up an intermediate CA and went through the motions of creating roles etc. I then proceeded and generated a certificate using one of the roles, like so : vault write…

ssl pki hashicorp-vault

asked Apr 29 '20 at 06:59

JaneD

149
1
2
15

3

votes

2 answers

Update Java trust certificate store from PKI source anchors on Unix

I manually added some new certificates to /etc/pki/ca-trust/extracted/java/cacerts and it makes Java trust these certificates as Java is configured to use this certificate location. However, from what I'm reading to do it properly and and make sure…

java unix certificate pki trust

asked Apr 08 '20 at 11:27

Eleator

51
1
4

3

votes

1 answer

Unable to generate self signed certificate using Powershell

Windows 10, Windows PowerShell ISE I'm trying to run the example I found at https://damienbod.com/2019/06/27/using-chained-certificates-for-certificate-authentication-in-asp-net-core-3-0/ New-SelfSignedCertificate -DnsName…

powershell security certificate pki

asked Dec 26 '19 at 15:07

MyDisplayName

223
5
12

3

votes

1 answer

How to verify a certificate against an issuing chain in Go?

I'd like to verify a PEM certificate against an issuing chain which is also a .pem file with several certificates separated by newline characters as shown in this gist, https://gist.github.com/kurtpeek/8bf3282e344c781a20c5deadac75059f. I've tried…

go certificate x509 pki

asked Dec 18 '19 at 00:05

Kurt Peek

52,165
91
301
526

3

votes

2 answers

Can you access the client's certificate store and sign data with Blazor?

I'm trying to replace an old Java applet that was used for digitally signing data in an ASP.NET application. I'm trying to access the private key from the client certificate, sign some data, and send the signed data back to the server. I've been…

digital-signature blazor pki

asked Sep 13 '19 at 19:10

Ryan VandenHeuvel

141
1
5

3

votes

1 answer

PKI Best practices for updating SSL certificates

What are the best practices for updating client-side SSL certificates without user interaction? To be more specific: I have a server with SSL private key/public x.509 certificate. All clients will communicate with this server through SSL. In order…

ssl pki x509

asked Apr 19 '11 at 16:06

user291529

31
2

3

votes

1 answer

Does gRPC checks CRLs/OSCP Responders during TLS handshake?

During a mutual client-server authentication with gRPC+protobuf, is there a CRL and/or OSCP Responder check of the status of the certificate? I need to be sure that I can revoke the certificate on my PKI and that subsequent calls will be blocked…

ssl certificate grpc pki grpc-go

asked May 07 '19 at 23:54

Arkon

2,648
6
26
46

3

votes

2 answers

Building a Certificate Authority architecture

I am trying to build a network involving multiple clients and a single server, both written in Java. I am trying to find a way to automatically generate a CSR on the client side that can be sent to the server for a signed certificate. I have been…

java keystore pki csr

asked Apr 02 '11 at 00:27

Russ

31
1
2

Questions tagged [pki]