Igor Delovski Board Forum Index Igor Delovski Board
My Own Personal Slashdot!
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

Certificates

 
Post new topic   Reply to topic    Igor Delovski Board Forum Index -> Dev Links
Dev Links  
Author Message
delovski



Joined: 14 Jun 2006
Posts: 3524
Location: Zagreb
PostPosted: Sun May 28, 2017 4:32 pm    Post subject: Certificates Reply with quote
myonlineusb - What are the differences between PEM, DER, P7B/PKCS#7, PFX/PKCS#12 certificates

PEM Format
It is the most common format that Certificate Authorities issue certificates in.

DER Format
It is a Binary form of ASCII PEM format certificate. All types of Certificates &
Private Keys can be encoded in DER format.

P7B/PKCS#7
They contain '--BEGIN PKCS--' & '--END PKCS7--' statements. It can contain
only Certificates & Chain certificates but not the Private key.

PFX/PKCS#12
They are used for storing the Server certificate, any Intermediate certificates
& Private key in one encryptable file.
Back to top
View user's profile Send private message Visit poster's website
delovski



Joined: 14 Jun 2006
Posts: 3524
Location: Zagreb
PostPosted: Sun May 28, 2017 4:34 pm    Post subject: Reply with quote
apple - Source of SecPKCS12Import()

Code:
status = SecKeychainItemImport(pkcs12_data,
                               NULL,      /* no filename */
                               &inputFormat,
                               &itemType,
                               flags,
                               &keyParams,
                               importKeychain,
                               &tmpItems);
Back to top
View user's profile Send private message Visit poster's website
Ike
Kapetan


Joined: 17 Jun 2006
Posts: 3136
Location: Europe
PostPosted: Tue May 30, 2017 7:48 am    Post subject: Reply with quote
git - extractIdentityAndTrustTests - SecPKCS12Import fiddling

Code:
OSStatus extractIdentityAndTrust (CFDataRef inP12data, SecIdentityRef *identity, SecTrustRef *trust)
{
}

- (NSURLCredential *)credentials
{
}
Back to top
View user's profile Send private message
Ike
Kapetan


Joined: 17 Jun 2006
Posts: 3136
Location: Europe
PostPosted: Tue May 30, 2017 9:23 am    Post subject: Reply with quote
chromium.googlesource.com - x509_util_mac.cc

OSStatus CreatePolicy(...)
bool IsValidSecCertificate(...)
base::ScopedCFTypeRef<SecCertificateRef> CreateSecCertificateFromBytes()
base::ScopedCFTypeRef<SecCertificateRef>
CreateSecCertificateFromX509Certificate()
scoped_refptr<X509Certificate> CreateX509CertificateFromSecCertificate()
bool IsSelfSigned(...)
SHA256HashValue CalculateFingerprint256(...)
OSStatus CreateSSLClientPolicy(...)
OSStatus CreateSSLServerPolicy(...)
OSStatus CreateBasicX509Policy(...)
OSStatus CreateRevocationPolicies(...)
Back to top
View user's profile Send private message
Ike
Kapetan


Joined: 17 Jun 2006
Posts: 3136
Location: Europe
PostPosted: Mon Oct 16, 2017 6:54 pm    Post subject: Reply with quote
ars - Millions of high-security crypto keys crippled by newly discovered flaw

"The researchers examined keys used in electronic identity cards issued by
four countries and quickly found two - Estonia and Slovakia - were issuing
documents with fingerprinted keys, both of which were 2048 bits in length,
making them practically factorizable."
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Igor Delovski Board Forum Index -> Dev Links All times are GMT + 1 Hour
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Delovski.hr
Powered by php-B.B. © 2001, 2005 php-B.B. Group