Highest Voted 'pki' Questions

4

votes

2 answers

PHP and X.509 authentication - Checking certificate issuer

I'm trying to have a specific page on my site only accessible to people after X.509 authentication. Catch is, I want it to be available to all clients who have a matching certificate issued by a specific Intermediate CA (I intend to have a few…

asked Aug 27 '11 at 02:13

TC Fox

980
4
13
25

4

votes

2 answers

Is there a risk in using self signed public key for issuing JWT token?

I have a service that issues tokens to registered clients. Service generates a public key and private key. Stores the private key securely. When a client requests for a token, my service authenticates the client and issues a JWT token which is…

jwt token openid-connect self-signed pki

asked Feb 11 '22 at 03:42

Jeane

41
2

4

votes

1 answer

iPhone Public-Key Encryption SecKeyEncrypt returns error 9809 (errSSLCrypto)

I am trying to use the iPhone's PKI libraries to encrypt a short string (12345678), but I keep getting the error -9809 (i.e. errSSLCrypto) whenever I try to use SecKeyEncrypt. The SecureTransport.h header file describes this error simply as…

iphone x509certificate public-key-encryption pki commoncrypto

asked Aug 05 '11 at 04:24

futureelite7

11,462
10
53
87

4

votes

1 answer

Signing docker images with delegation key only

I'm trying following scenario. On my laptop I have created a delegation key. On a server I have created the target and authorized my delegation key Now when signing my Docker image via docker trust I'm getting following error. An error occurred…

docker pki notary tuf

asked May 15 '20 at 08:11

Marco

4,817
5
34
75

4

votes

2 answers

BouncyCastle signature creation java.lang.NoSuchFieldError: xmss_SHA256ph

I am trying to create a signature as shown below, but I am getting this error: java.lang.NoSuchFieldError: xmss_SHA256ph I am using bcprov-jdk15on and bcpkix-jdk15on version 1.64 and Java 8. I have tried various signature algorithms, the latest…

java digital-signature bouncycastle pki

asked Mar 25 '20 at 17:37

SME

489
1
10
21

4

votes

1 answer

What is the best practices for storing certificates in spring boot?

Every single tutorial I see online shows me how to setup HTTPS in spring boot by simply specifying the keystore path and password in the application.conf file, for example 1.4 in this link. I can do this and setup HTTPS fine. However, this just…

java spring-boot https pki

asked Jan 09 '20 at 10:43

Tim

213
3
9

4

votes

2 answers

Trust Anchor Certificates in PKI

I'm trying to figure out how trust anchors play a part in the PKI. I understand that it's the root of the certificate chain and is used to validate if a certificate is trusted or not. How does it validate a certificate? (eg. how does it use a public…

pki

asked May 09 '19 at 13:57

Justin Case

787
2
15
30

4

votes

2 answers

Public keys in OpenID Connect

I'm currently trying to use IdentityServer4 to build a single-signon experience for my users across different apps I have. They are all hosted in the same local network and no third-party apps authenticate with it. The client apps are still…

owin identityserver4 openid-connect pki katana

asked Feb 02 '18 at 13:35

John

6,693
3
51
90

4

votes

0 answers

How to read Private Key form Windows Key Store?

Is it possible to read valid private key from windows keystore like Windows-MY, Windows-ROOT in java? I can read private key from other storages eg: pkcs12 (.pfx, .p12), pkcs11, jks(.jks), jceks . I have tried something like this but which works…

java rsa digital-signature keystore pki

asked Aug 26 '17 at 19:42

sharif2008

2,716
3
20
34

4

votes

2 answers

How to create a public key store for microservices?

I implemented a set of microservices in a docker enviornment. And each of these services communicate with each other using JWT tokens. When service A calls to service B Service A, sign the token using his private key and pass to service B service…

security docker microservices pki ca

asked Mar 05 '17 at 11:49

Sameera Kumarasingha

2,908
3
25
41

4

votes

2 answers

Calculate Public Key Pin (.Net)

I wondered how to calculate the public key pin of an X509 certificate? For example. I've got a certificate via a web request var cert = (httpRequest as HttpWebRequest).ServicePoint.Certificate; X509Certificate2 cert2 = new…

c# http-headers x509certificate pki

asked Sep 11 '16 at 22:54

Jon

4,295
6
47
56

4

votes

5 answers

Is it safe to leave my password-protected PGP secret key available publicly?

My PGP secret keys are always password protected, which means you need to decrypt it using a symmetric key to get access to my private key. I am interested in making my password protected PGP secret key publicly available but I am not entirely sure…

cryptography key pki pgp

asked Sep 21 '10 at 04:33

Sam Goto

475
6
11

4

votes

1 answer

C# CX509PrivateKey Format

I'm trying to re-use the key pair I generated for creating a PKCS10 Certificate Signing request, but I cannot figure out what the format of this private key is. To create the key, I'm using the CERTENROLLLib CX509PrivateKey class. I've set the…

c# cryptography pki

asked Jan 20 '16 at 19:25

Zach

183
1
8

4

votes

2 answers

How to verify digital certificate by CA's public key

I am studying the digital certificates in PKI ( Public Key Infrastructure ). Almost all manuals / pages regarding this give following similar steps. Get subject identity + subject public key, (AND/OR Encrypted Message hash with subject's private…

php openssl pki digital-certificate

asked Oct 28 '15 at 08:21

kuldeep.kamboj

2,566
3
26
63

4

votes

2 answers

In PKI if everyone knows the public key does it mean anyone can decrypt ....?

In PKI if everyone knows the public key of the server does it mean anyone can decrypt the server response to the client which is encrypted by the private key which in turn can be decrypted by the servers public key as long as someone can sniff…

ssl encryption openssl ssl-certificate pki

asked Sep 17 '15 at 17:06

user1370642

165
1
2
13

Questions tagged [pki]