Is it possible to export the public key generated by RSACryptoServiceProvider in ASN.1 format? I need to decrypt using other "frameworks" (e.g. Delphi using LockBox). I only need to do this with the public key - the private one will only be used by .NET applications. I'm encrypting a small ...more >>

I am leaving AOL and have a new email account and server host. I am accepted with the sign in with the address and password, but when I try to post a question nothing happens. From the new account I tried each address and both present no problems signing in but neither way does anything ha...more >>

Hi, I am doing Forms Based Authentication using the built in tools of .NET. Authenticating off a database with some code a wrote and using login.aspx, web.config, etc etc... the usual deal.. I have it all working fine and pages I want to protect show a login page before being logged in to. ...more >>

I'm getting the above error in a dialog box from Visual Studio 2005 when trying to sign an assembly using a PFX file, and would like to know how to resolve the problem. Background: The PFX file has been used for code-signing before (to sign an InfoPath form), so therefore the file contains ...more >>

Hello, I have a very simple SslStream interaction with another vendor's server software. Their certificate is self signed so I have implemented a RemoteCertificateValidationCallback to ignore the error that this generates. In testing, the call to AuthenticateAsClient takes about 400ms (ie m...more >>

I want to secure a web service so only authorized client apps can use it. Will using SSL with an encrypted username and password in the soap header do the job? I know you could potentially capture a post to a web service (or anything sent over the web). Will SSL mean you can't capture the stre...more >>

Hi, I'm using VS2003 C#, .net 2.0 running on Windows Server 2000. I have a User's SID in SDDL format and also a DIRECTORYENTRY object representing this user object. How can I retrieve the name of the domain that this user object belongs to? -- Thanks....more >>

I'm trying to knock up a simple demonstration for myself to try using SSL to send and receive a simple message. I've based this on the code on the MSDN site - http://msdn2.microsoft.com/en-us/library/system.net.security.sslstream.aspx - and I'd like to end up with something that sends this text ...more >>

Hi all, I am trying to implement role based security in my C# program (define generic user, define roles and a generic principal during startup of the program). With "[PrincipalPermission(SecurityAction.Demand, Name=@"xxx", Role=@"yyy")]" I am trying to protect some areas of the code. A good e...more >>

I'm working on the single sign on project. Does anybody know how to validate a signed XML against X.509 certificate (public key certificate is provided) in .NET? I already tried using the SignXML.CheckSignature() object, but I kept getting an invalid/false result. The CheckSignature method has n...more >>

I'm working on the single sign on project. Does anybody know how to validate a signed XML against X.509 certificate (public key certificate is provided) in .NET? I already tried using the SignXML.CheckSignature() object, but I kept getting an invalid/false result. The CheckSignature method has n...more >>

Hi, how do you allow strongly type cast parameters to be passed to C# functions that use weakly type cast parameters while running under the "Medium" Trust Level security policy shipped with the ASP.NET 1.1 framework? I've written a general error reporting routine that formats and returns err...more >>

Can I elevate the rights of a delegated user token? I have a .net service running in LocalSystem context, that is called from a user context program via IPC. The service has a copy of the user token and can impersonate the user when required. My problem is that my service either runs as L...more >>

Hi, I'm trying to determine if all of the cipher suite CipherAlgorithmType types are available when using SslStream. By defaults only RC4 is showing up in my SslStream.CipherSuite property, but I need some of the AES cipher suites. As of a year ago, my understanding is that the AES types are...more >>

Hello, This is my situation: I'm trying to impersonate a different user when creating a process from inside a .NET assembly on SQL Server. Basically the flow looks like this: stored procedure->static C# function in Assembly->Process created in Asembly->External Application This work...more >>

Hi, I have a web part which dynamicaly loads an ascx control. If I configure my sharepoint for full trust, everything works fine. Using other security settings, I get the following exception: [SecurityException: Request failed.] System.Reflection.MethodBase.PerformSecurityCheck(Object ob...more >>

Hi, I have created one .net web application which will have all the DB connection info in the config file. The system which has this application is in DMZ. I don't want to place my DB connection info in the DMZ system. what should i do? how could i achieve this? will Windows share poin...more >>

Hi, I have code like this to enumerate certificates from user's personal store: X509Store personalStore = new X509Store(StoreName.My, StoreLocation.CurrentUser); personalStore.Open(OpenFlags.OpenExistingOnly | OpenFlags.ReadOnly); // read all certificat...more >>

I encountered a very weird scenario with the following code: CspParameters csp = new CspParameters(1, "Tev CSP v3.0"); csp.KeyNumber = 2; RSACryptoServiceProvider rsa = new RSACryptoServiceProvider(csp); byte[] data = new byte[2]; ...more >>

I am using .NET Framework 2.0. I used X509Certificate class to obtain the public key from a certificate file. // The path to the certificate. string Certificate = "C:\\Certificate.cer"; // Load the certificate into an X509Certificate object. X509Certificate ...more >>

I'm calling AppDomain.SetPrincipalPolicy() with WindowsPrincipal, but Thread.CurrentPrincipal still returns a GenericPrincipal. I don't see Thread.CurrentPrincipal being set before this (which can cause it). Are there any other circumstances under which this can happen? This is ..NET 2.0, ...more >>

hi, am bharathi currently working in .net platform,in my application iam in need of retriving the certificate stored at the server and to validate the identity of the server. my sever is winn.mygdc.com and it's a apache web server. is there any options available in the .net to at...more >>

Whats the deal here MS? Has Issues in Win2003, only way to allow is a Regedit hack or Installer class? What kind of BS is this? So what evey time I install to Win2003 I need to add X number of Application Sources to the Event log system? What if the Log is Full? So what we do our own f...more >>

Hallo NG, after installing IE7 a security dialog appears when executing an application from a share. Either I change the IE7 security settings for local intranet or I use a certificate for my executable. Q: How can I sign my .NET application with a digital certificate? How can I...more >>

When I double click on an entry of the "Security" log in the system's "Event Viewer", a Property window pops up. In this window, there is a "Description" section that lists many different information like "User Name:, "Domain", "Login ID"...... How can I obtain each of this inforation in my ...more >>

I want to lockdown three or four pages of an otherwise publically access web app. You have to login but providing you have the right username and password you have access. These 3 or 4 pages should only be accessed from certain webservers and of course the hosting server. I was thinking of usi...more >>

Hi all, I have an application that I need to run from a network share, the server is windows 2000 server the clients are windows XP. Whenever I run the application from the share a get access problems when trying to query anything such as computername. when I run the same program from a...more >>

I use outlook express. But I find it's not facility? what NewsGroup tools do you use? ...more >>