[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [iaik-jce] Signing a pkcs10



You can use ASN class methods to compose the certificate request in the
envelope
you need.
toByteArray return a DER-encoded pkcs10 envelope and not a pkcs7 envelope.
Why you need a pkcs7 envelope?


Mauro Marini wrote:

> I've got to send an unsigned pkcs#10 certificate request to my CA. If I
try to
> DER-encode it using the toByteArray method, I get a runtime exception with
> message: "Cannot encode this cert request. First it has to be signed!"
> I think I should use certificate_request.Sign() before, but the private
key is
> not extractable from my smart card, so I can't pass it to that method.
> Is there any alternative? Maybe passing somehow a signed digest?
> And after using the Sign method, does toByteArray() return a DER-encoded
pkcs7
> object?
> Thanks a lot
>     Mauro
>
> --
> Mailinglist-archive at
http://jcewww.iaik.at/mailarchive/iaik-jce/jcethreads.html
>
> To unsubscribe send an email to listserv@iaik.at with the folowing
content: UNSUBSCRIBE iaik-jce
>

--
Petruzzi Francesco.
--


--
Mailinglist-archive at
http://jcewww.iaik.at/mailarchive/iaik-jce/jcethreads.html

To unsubscribe send an email to listserv@iaik.at with the folowing content:
UNSUBSCRIBE iaik-jce