Collaborate Disseminate
I created a private key using Analog device’s signtool. It can be found part of "CrossCore Embedded Studio for Blackfin, SHARC and SHARC+ – Release (Rev. 2.12.0)". Link: https://www.analog.com/en/resources/evaluation-hardware-and… Continue reading How to generate an X9.62 encoded ECDSA prime256v1 private key using OpenSSL?
In ASN.1 you’ll have definitions like this:
id-ad-ocsp OBJECT IDENTIFIER ::= { id-ad 1 }
X.680 (page 22) says the following:
Each production consists of the following parts, on one or several lines, in order:
a) a name for the ne… Continue reading what are the valid characters in an ASN.1 name?
Please bear with me, I’m definitely not an expert here, and this is one case where Google, Bing, and their many AIs are not getting me a useful answer…
TL;DR? I’m looking for information on how to embed a logotype on a X.509 PEM certific… Continue reading Trying to set up a crude prototype system to test BIMI using open-source tools
I’m currently working on a website backend program for a client, that scrapes info from a South Korean website. The login system is certificate based, and I’m currently testing things out with a .pfx file. Extracting the certificate and pr… Continue reading Extracting a Bit String from a .pfx file’s private key
Is there anywhere that provides a list of CIDR ranges for web hosting providers, data centers, cloud computing services etc.? It could be free or commercial.
I get a lot of web scraping from these IPs, and would like to block as many as po… Continue reading CIDR ranges for web hosting providers, data centers, cloud computing etc [closed]
I’d like to store a private symmetric key, aes-256, in a PEM file.
My understanding is that usually these types of keys are derived using RSA/EC DH and there’s no need to save them, but in my application I do need to save them and share se… Continue reading How to save AES Key in PEM file
If I have a Timestamp token, then the signing certificate for the token is identified via the ESSCertID (for RFC3161 tokens) or the ESSCertIDv2 (for FC5816) of the signing certificate, which is the SHA-1 (in the case of ESSCertID) or some … Continue reading OpenSSL cli: how to extract ESSCertID or ESSCertIDv2 from SignerInfo of timestamp token
I’m trying to sign a CSR using python-asn1crypto and python-pkcs11. I have an ECC Keypair stored in a Hardware Security Module (HSM).
Here’s a code sample:
key = decode_ec_public_key(encode_ec_public_key(pub))
info = CertificationRequestI… Continue reading Signing CSR using an ECC keypair
The ASN.1 module for X.509 certificates as specified in RFC 5912 – Section 14 is as follows:
TBSCertificate ::= SEQUENCE {
version [0] Version DEFAULT v1,
serialNumber CertificateSerialNumber,
signatur… Continue reading Where are field names of decoded human readable X.509 certificates specified?
Background: I have a .pfx file from a microsoft CA that some appliance dislikes, but openssl considers it valid. I can use openssl to rewrite the pkcs12 file, trimming away some unnecessary attributes.
openssl pkcs12 -in ori… Continue reading Dissecting and decrypting a .PFX file