Re: Client Certificates Issue
- From: "Joe Kaplan \(MVP - ADSI\)" <joseph.e.kaplan@xxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 28 Mar 2006 00:02:50 -0800
You can't. The client possesses the private key and never provides that to
the server. It wouldn't be private anymore if they did! When the SSL
client cert handshake takes place, the client simple signs some data with
their private key in order to prove to the server that they are the "owner"
of the private key for the certificate they provided to the server.
Also, you don't encrypt data with the private key. Private keys are for
signing and decrypting. Public keys are used for encrypting and verifying
signatures. It seems like people constantly get themselves in trouble by
getting this confused.
Joe K.
"Infospy" <Infospy@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:F18B52CF-191F-4321-90CB-926FFC694814@xxxxxxxxxxxxxxxx
Hi! I'm developing a C#.Net WebPart running under Sharepoint Portal
Server
2003.
I've made a Form that captures n informations that will be stored under a
SQL database.
The problem is that i need to generate a Digital Signature using the same
data.
I Will generate a message Digest and store it, and then Encrypt it using
private key and Store it also in the same record.
The question i have is, how can i get the user certificate in order to do
this?
I can't seem to find any information about getting the user Certificate so
i
can signature the data.
Thanks in Advace for you help.
Best Regards
.
- Prev by Date: Re: StrongNameIdentityPermission
- Next by Date: Code works in Windows app. but not in ASP.Net
- Previous by thread: ANN: Good IT Resource
- Next by thread: Re: Client Certificates Issue
- Index(es):
Relevant Pages
|
|
