Re: [SmartCard CSP] How can I obtain a PIN to sign HASH ?

From: Eric Perlin [MS] (ericperl_at_microsoft.com)
Date: 10/10/03 

Date: Thu, 9 Oct 2003 15:36:45 -0700

Have you actually tried with CRYPT_IMPL_MIXED | CRYPT_IMPL_REMOVEABLE?
I doubt that you implemented everything on the smartcard (it would be very
slow) so this is actually the correct value. 

-- 
Eric Perlin [MS]
This posting is provided "AS IS" with no warranties, and confers no rights.
---
"Euphen Liu" <euphen_liu@ncksoft.com> wrote in message
news:#Q9uQHXjDHA.1284@TK2MSFTNGP09.phx.gbl...
> Hi all, (sorry for my pool English.)
>
> We have created a RSA-FULL CSP based SmartCard. It works fine with
> IE/OE, etc.
>
> Now we are using wireless network connection with EAP (Use SmartCard or
> other certificates) on WindowsXP(with SP1 installed), I selected the "Use
a
> certificate on this computer", when the network connected, my CSP be
> called as following:
>     ...
>     ...
>     CPAcquireContext(....)   [called with the container name, ok]
>     CPGetProvParam(..., PP_IMPTYPE)  [return CRYPT_IMPL_HARDWARE |
> CRYPT_IMPL_REMOVEABLE, ok]
>     CPCreateHash(...) [ok]
>     CPSetHashParam(...) [ok]
>     CPSignHash(...) [can not work because not logon to the smartcard, so
> can not use the private key to sign data.]
>     ...
>
> I don't know why the system does not show the "Input the PIN" dialog box
> just like I select "Use my smart card". How can I make the system show
such
> dialog box to obtain the PIN from user input?
>
> BTW, I searched all these archives and can not find any idea about this
> issue, some one discuss the smart card CSP should return
> CRYPT_IMPL_MIXED | CRYPT_IMPL_REMOVEABLE, but for my instance, we
> does not call other base CSP, we implemented all functions/algorithms.
> Some of the algorithms implemented as software like hashdata, some by
> hardware like RSA-compute.
>
> I had try more than 5 days but can not find the right way.
>
> Is any body can resolve my problem?
>
>

Relevant Pages

  • Re: DEBUGCHK error in smartcard
    ... If I may use CETK to test my driver and if CETK is using CSP? ... The Smart Card Resource Manager APIS is CryptoAPI other than CryptoSPI? ... Thus to use your smartcard from the Certificate Control Panel you ...
    (microsoft.public.windowsce.platbuilder)
  • Re: [SmartCard CSP] How can I obtain a PIN to sign HASH ?
    ... "CRYPT_IMPL_MIXED" means not call other CSP. ... smart card", another is "Use a certificate on this computer". ... first one to logon the wireless network, Windows show me a "Input SmartCard ... show the PIN require dialog box. ...
    (microsoft.public.platformsdk.security)
  • Re: Smartcard CSP Problem
    ... the crypto processor is not a smart card and it has its own crypto ... Would a simple CSP DLL work in this case? ... > You don't need to emulate a smartcard CSP for it to work with S-MIME. ...
    (microsoft.public.platformsdk.security)
  • Re: Smartcard CSP Problem
    ... You don't need to emulate a smartcard CSP for it to work with S-MIME. ... But your "simulated" smartcard CSP is not going to work for Windows logon. ... > If I understood the concept of the certificate handling in windows, ... > provide certification handling - Does the enrollement task itsself store ...
    (microsoft.public.platformsdk.security)
  • Re: DEBUGCHK error in smartcard
    ... I am looking int the CETK. ... If you do not have a CSP you can communicate with the smartcard by using the ... A smartcard CSP will map CryptoAPI calls into Smart Card Resource ...
    (microsoft.public.windowsce.platbuilder)