[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [iaik-jce] Signing a pkcs10
You can use ASN class methods to compose the certificate request in the
toByteArray return a DER-encoded pkcs10 envelope and not a pkcs7 envelope.
Why you need a pkcs7 envelope?
Mauro Marini wrote:
> I've got to send an unsigned pkcs#10 certificate request to my CA. If I
> DER-encode it using the toByteArray method, I get a runtime exception with
> message: "Cannot encode this cert request. First it has to be signed!"
> I think I should use certificate_request.Sign() before, but the private
> not extractable from my smart card, so I can't pass it to that method.
> Is there any alternative? Maybe passing somehow a signed digest?
> And after using the Sign method, does toByteArray() return a DER-encoded
> Thanks a lot
> Mailinglist-archive at
> To unsubscribe send an email to email@example.com with the folowing
content: UNSUBSCRIBE iaik-jce
To unsubscribe send an email to firstname.lastname@example.org with the folowing content: