Re: Getting digital signature from SSL handshake

From: David Wang [Msft] (someone_at_online.microsoft.com)
Date: 01/31/05

Next message: Simon Downes: "Error Message help ?"
Previous message: Eric: "Re: Getting digital signature from SSL handshake"
In reply to: Eric: "Re: Getting digital signature from SSL handshake"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Mon, 31 Jan 2005 01:46:28 -0800

I do not think your approaches will work.
- The handshake is already done by the time ASP is invoked, so no way to
Request.BinaryRead() it.
- Same goes for .Net HttpListener class. The handshake is already done by
the time ASP.Net is invoked.

Now, ISAPI Extension does have API calls to retrieve the certificate blob of
the request negotiated by IIS, but this data has to be exposed by the
application layer (i.e. ASP/ASP.Net) for their applications to use it. For
example, there are various CERT_ server variables ( documented on MSDN --
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/iissdk/html/21b3be8f-d4ed-4059-8e21-6cba2c253006.asp )
that give fields of the client (and server) certificate in ASP and ASP.Net.
ASP also has Request.ClientCertificate() to retrieve similar sorts of data
from the client certificate..

However, I do not recall anything remotely like "digital signature" in
there.

-- 
//David
IIS
http://blogs.msdn.com/David.Wang
This posting is provided "AS IS" with no warranties, and confers no rights.
//
"Eric" <ebo2002fr@VIREZMOICA.yahoo.fr> wrote in message
news:uhLujL3BFHA.3416@TK2MSFTNGP09.phx.gbl...
> Check the AUTH_USER server variable for the username from the Client Cert.
> This can be done in a variety of ways.
>
> There is no way for you to recognize nor capture the digital signature.
> Really should not need to nor be allowed.
Thank you for the reply.
If we do specific developpment, there are maybe other ways to get this
information :
- ASP Request object with Request.BinaryRead method
-  .NET HttpListener Class
Regards.
Eric

Next message: Simon Downes: "Error Message help ?"
Previous message: Eric: "Re: Getting digital signature from SSL handshake"
In reply to: Eric: "Re: Getting digital signature from SSL handshake"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Launching an .exe on intranet
... you mentioned that your client wanted to ... "replace the functionality of his Excel file... ... share access to it, an ASP app is what you want, in which case you only need ... VB is a language for writing executables. ...
(microsoft.public.frontpage.programming)
Re: SQL beginner help
... statements to the server)? ... request from the "jblow123" web site login. ... with the Asp code it will decide what how to handle what the user is ... But I still need some client side execution;/ I think I got a good ...
(microsoft.public.sqlserver)
Re: Send and recive files
... > When the user press the button for submit the selected file, how my asp ... > How can i send file to the client? ... - When I have to send file from server to client, ... calling for the ASP script with the ActiveX component or the pure ASP ...
(microsoft.public.inetserver.asp.general)
Re: ASP, COM+ and simultaneous pages
... I tried manually opening up 4 separate IE windows, ... and I could see 4 ASP pages executing simultaneously ... > client - if not then for some reason the Javascript on the client is failing ... > to send the request. ...
(microsoft.public.inetserver.asp.components)
Re: ASP, COM+ and simultaneous pages
... I tried manually opening up 4 separate IE windows, ... and I could see 4 ASP pages executing simultaneously ... > client - if not then for some reason the Javascript on the client is failing ... > to send the request. ...
(microsoft.public.inetserver.iis)