dotnet security: CheckSignature & Revocation Server -- dotnet security

You're in the

dotnet security

group:

CheckSignature & Revocation Server

Sadeq
6/29/2006 11:44:07 AM

dotnet security: I want to use CheckSignature function of SignedCms class to verify the
signature of a CMS. I also want the function to verify the certificate
chain to see if the signer is trusted. So I call the function with
'false' as parameter:

SignedCms signedCms = new SignedCms();
....
signedCms.CheckSignature(false);

but it throws an exception with the following message:

The revocation function was unable to check revocation because the
revocation server was offline.

Is there anyway to tell it not to check the revocation server?

Re: CheckSignature & Revocation Server

Dominick Baier [DevelopMentor]
6/29/2006 10:36:53 PM

Hi,

yes - pass "true" to CheckSignature to only check the signature but not the
cert.

Afterwards create a X509Chain object - here you can set all properties like
online/offline, timeouts etc.

then call Chain.Build and check the status code.

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

[quoted text, click to view]

Re: CheckSignature & Revocation Server

Sadeq
7/2/2006 12:08:56 AM

Thnx. Works great.

Got something to say? Click here to post a reply to this thread.

Don't see what you're looking for? Try a search.

View other messages in the dotnet security group.

home · blog · groups

Questions? Comments? Contact the dn