Collaborate Disseminate
I‘m sending a mail encoded with quoted printable encoding that contains some dots .. There is a problem with a specific mailserver/customer. For some reason, they receive the mail in such a form that each dot is encoded as =2E ultimately b… Continue reading Mails invalid signature because of encoding of periods in quoted printable [migrated]
Under OWASP MASTG-TEST-38, what is the rationale for
Make sure that the release build has been signed via … all the
three schemes for Android 9 (API level 28) and above, and that the
code-signing certificate in the APK belongs to the de… Continue reading What is the rationale for signing apk with all schemes under MASTG-TEST-38? [closed]
How do I indicate that a specific document or transaction associated with a particular signature should no longer be considered valid?
I’m talking of recalling a signed document, not revoking the private key, because with the private key I… Continue reading Revoking a digital signature at the cryptographic level
In a small company, we have an issue suspecting a former employee has forged an e-mail to our company from his Hotmail account by changing its date and recipients in the EML file, claiming that the recipients were aware of the content by t… Continue reading How to check e-mail message authenticity? Suspected EML file forging
can I retrieve metadata from a text that was sent to me? what about email? what about a closed website? if anyone can help, either extract it or read it, that would be great. The closed website belongs to me.
If you have a client-side script (e.g client.py) communicating with a server-side script (e.g server.py). Using SSL certificates the identity of the server is automatically verified.
But how do you verify that the code of server.py isn’t t… Continue reading Validate server-side code using hash?
(I likely didn’t use correct keywords, but I was not able to have a complete info about below question).
Working on a IoT device, capable to connect to our own server, using MQTT and HTTPS connections, both utilizing TLS handshake. We want… Continue reading Which server CA to use for device fleet management?
I have to store a document (e.g. a JSON file) on a remote PC (that my App is running on) alongside a signature to be able to verify that this file was signed by me. I have no access to this PC nor does this PC have access to the internet. … Continue reading How to prevent public key tampering
My organisation, say Acme, is building an e-signature platform where global businesses sign up and use the platform to send out e-signature requests. And when signers in a particular e-sign request sign the document, Acme must digitally si… Continue reading How to feasibly digital sign high volume documents with CA issued digital certificate?
In eIDAS Remote Qualified Signatures, but also in other Remote-Signature Solutions, the cryptographic keys are held by the Remote Signature Provider. The user uses some method, e.g., a smartphone app, to allow the creation of a signature.
… Continue reading Remote eIDAS Qualified Signatures: Control of Signature Activation Data