[prev in list] [next in list] [prev in thread] [next in thread]
List: ms-cryptoapi
Subject: Re: Signatures problem
From: "Khassaia, Amir" <AMIR.KHASSAIA () CA ! COM>
Date: 2001-09-26 0:18:24
[Download RAW message or body]
Hi Eduardo,
Authenticated attributes may or may not be placed in a CMS/PKCS#7 object by
the party responsible for creating the object.
CryptSignMessage() which I assume was used to create the signature from CAPI
side can in fact produce "bare" CMS objects which have as much or as little
things present/specified as you want (within reason).
See PCRYPT_SIGN_MESSAGE_PARA which is the first parameter to
CryptSignMessage() for where to place AuthenticatedAttributes when creating
a CMS object.
If there are any attributes present CAPI implementation adds the content
type object identifier (OID), and the hash of the message itself
automatically.
Regards,
Amir
> -----Original Message-----
> From: Eduardo Figoli [mailto:eduardo.figoli@ABITAB.COM.UY]
> Sent: Tuesday, September 25, 2001 11:52 PM
> To: CryptoAPI@DISCUSS.MICROSOFT.COM
> Subject: Signatures problem
>
>
> I have parsed a dettached CAPICOM signature (ASN1
> specification) and a dettached signature made by a propietary
> product Iīm using. I have realized that the
> "authenticatedAttributes" field is not filled in the CAPICOM
> signature. As far as I know CRYPTOAPI fills this field when signing.
>
> So, I canīt verify dettached signatures other than the ones
> made by CAPICOM.
> Please, does someone have more information about this or any
> suggestions ?
> Some Cryptoapi signature verification and generation code can help me.
>
>
> Thanks,
>
> Eduardo Figoli
> Abitab S.A.
> Montevideo - Uruguay
>
> ----------------------------------------------------------------
> Users Guide http://discuss.microsoft.com/archives/mailfaq.asp
> contains important info. Save time, search the archives at
> http://discuss.microsoft.com/archives/index.html .
> To unsubscribe, mailto:CryptoAPI-signoff-request@DISCUSS.MICROSOFT.COM
>
----------------------------------------------------------------
Users Guide http://discuss.microsoft.com/archives/mailfaq.asp
contains important info. Save time, search the archives at
http://discuss.microsoft.com/archives/index.html .
To unsubscribe, mailto:CryptoAPI-signoff-request@DISCUSS.MICROSOFT.COM
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic