'Re: Personal Digital Certificate NOT stored in browser.'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ms-cryptoapi
Subject:    Re: Personal Digital Certificate NOT stored in browser.
From:       "Glenn K. Smith" <gksmith () MAIL ! UTEXAS ! EDU>
Date:       1998-11-30 21:08:04
[Download RAW message or body]


On Fri, 6 Nov 1998 12:36:28 -0500, Jaime Rodriguez <JRODRIGUEZ@CERNER.COM> wrote:

This is what I'm working on - although I'm not sure how to go about it.  I've got \
C/C++ code to port a cert from the smartcard to the browser (IE) so that IE can \
recognize the certificate - I don't like this method.

As far as the code goes, I can create containers and key pairs, just not generate a \
certificate for the smartcard.

Perhaps we can share knowledge.  I've been working only the CryptoAPI beta testing \
Schlumberger's Cryptoflex stuff without much understanding of the how everything is \
supposed to fit together.



> Please bear with me. I just want to hear from the experts
> if what I am trying to do can be done.
> 
> I would like to write some thing that plugs into BOTH IE and Netscape ( it
> is OK to have different controls for each ) that does the following:
> A user walks up to a PC, sticks a smartcard in it and connects to a CA or
> certificate server, obtains a digital certificate and STORES it in a smartcard. The \
> certificate is NOT stored in the browser. 
> A user walks up to another PC, sticks a smart card in and perhaps clicks a link in \
> the browser or enters a particular URL.  The browser establishes an SSL session \
> with the web server using the personal digital certificate (PDC) stored on the \
> smart card.  The PDC itself is never physically installed on the desktop.  Since \
> the PDC is used, the server is able to positively identify and authenticate the \
> user. 
> Has any one done this. Is it doable ?
> I am a newbie going through the archives and looking for references on how to do \
> it, particularly samples... If any one has info on this, (whether it can be done or \
> not, and info on useful samples ), I would appreciate it a lot if they replied to \
> the post or email me directly and enlighten me with their wisdom. 
> By the way, the SMARTCARD part I got taken care of. As long as I could represent \
> the DC as a blob of data, I can read it and write it no problem.. 
> Thanks in advance.
> Regards,
> Jaime

----------------------------------------------------------------
Users Guide http://www.microsoft.com/workshop/essentials/mail.asp
contains important info including how to unsubscribe.  Save time, search
the archives at http://discuss.microsoft.com/archives/index.html


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic