SV: [Mono-list] Verifying end certificate against
rootcertificates in store
Sebastien Pouliot
sebastien.pouliot at gmail.com
Tue Oct 11 10:43:44 EDT 2005
Hello Kim,
My previous answer was a little more general (than certificate
verification). Mono itself doesn't offer, nor plan to, any kind of
integration with the Windows certificate store.
You either have to:
(a) use Fx 2.0 new X.509 classes;
(b) p/invoke into CryptoAPI yourself; or
(c) use existing wrappers classes (like Mentalis).
On Tue, 2005-11-10 at 16:33 +0200, Hellan.Kim KHE wrote:
> Hi Sebastien
>
> Okay, so it can't be done with the current build :(
> Then what about some functionality to retrieve all certificates from
> the store. Is that available?
> I could always do the verifying manually then.
>
> Or I could do a more specific search for a root certificate with a
> Common Name that matches the issuer in the certificate. And then check
> if that specific CA is the issuer of my end certificate.
>
> Are there any current functionality to get a specific certificate from
> the "Trusted root authorities" store then. And then verify that this
> certifcate is the issuer certificate?
>
> I know I'm ignoring checking of certificate chains here. I just want
> to make a simple check if possible.
>
> Thanks,
> Kim
>
>
> -----Oprindelig meddelelse-----
> Fra: mono-list-bounces at lists.ximian.com
> [mailto:mono-list-bounces at lists.ximian.com] På vegne af Sebastien
> Pouliot
> Sendt: 11. oktober 2005 15:54
> Til: Hellan.Kim KHE
> Cc: mono-list at lists.ximian.com
> Emne: Re: [Mono-list] Verifying end certificate against
> rootcertificates in store
>
> Hello Kim,
>
> You either have to use Fx 2.0 which has much expanded support for
> X.509
> or p/invoke into CryptoAPI.
>
> IIRC Mentalis has a library that wraps most of CryptoAPI
> for .net/windows apps.
>
> On Tue, 2005-11-10 at 15:46 +0200, Hellan.Kim KHE wrote:
> > I'm looking for the "correct" way of verifying the issuer of a
> > X509Certificate (end certificate) against all root certificates in
> found
> > in the LOCAL_MACHINE "Trusted root authorities" certificate store in
> > Windows.
> >
> > Does anyone have some example code they want to share for doing that
> > task?
> >
> > Thanks!
> > /Kim
>
--
Sebastien Pouliot
email: sebastien at ximian.com
blog: http://pages.infinit.net/ctech/
More information about the Mono-list
mailing list