digital-signature – Page 7 – WindowsTechs.com

How does the client get the certificate (and public key) of the delegated authority (OCSP responder) to confirm the response in OCSP?

Posted on February 4, 2023 by Filip

I have one question regarding the OCSP protocol to check if the certificate is revoked or not. The question is about checking whether the intermediate CA certificate immediately below the root CA is valid or not. I know that when we send a… Continue reading How does the client get the certificate (and public key) of the delegated authority (OCSP responder) to confirm the response in OCSP?→

How to get a CA into a Trust Chain

Posted on January 29, 2023 by Vlad A.

I’m using Google CA Service Provider in the Google Cloud to issue key materials on their FIPS-140-2 Level 3 HSMs (google’s service).
I intend to send the attestation bundle alongside public keys and other proofs as a CSR to a 3rd party Tru… Continue reading How to get a CA into a Trust Chain→

Payment Gateway rejecting Digitally Signed Payment Message

Posted on January 23, 2023 by Vishal

I am new to digital signatures. I read many problem statements, solutions, and documents but nothing came to my rescue.
Payment Message (Text) needs to be digitally signed with the following specs as per the payment system mandate.

The ha… Continue reading Payment Gateway rejecting Digitally Signed Payment Message→

Need for authentication in an offline system

Posted on January 17, 2023 by pwes

I need to design a scheme, where access to an offline System is granted based on some kind of information/proof of knowledge, provided by a separete system, Prover system.
I’m in position where I can put any information on both Systems.
Th… Continue reading Need for authentication in an offline system→

qualified e-signature long-term security

Posted on January 3, 2023 by akostadinov

I’m considering to obtain a QES (Qualified electronic signature). But I’m concerned about long term security.
The hypothetical scenario is lets say after 10-15 years the algorithms are cracked or computers become too fast or whatever which… Continue reading qualified e-signature long-term security→

Does verifying a code signature require making a network connection?

Posted on January 2, 2023 by greyyit

Does Windows 11 need to make a network connection to verify a code signature for a .exe or .dll file?

Continue reading Does verifying a code signature require making a network connection?→

Can an attacker flip bits of a signature to create DoS?

Posted on December 12, 2022 by lll

Assume two parties communicating. A sends a message to B signed with its private key. B received the message and verify it using the public key of A. Can an attacker launch a DoS attack by flipping bits in the signature hence preventing B … Continue reading Can an attacker flip bits of a signature to create DoS?→

Secure boot + full disk encryption, should I sign the kernel?

Posted on November 30, 2022 by shellcode

I’m redoing my laptop installation from scratch, and this time I want a full secure boot chain.
Here’s what I did so far :

Enroll my own keys in the UEFI firmware
Sign my grub bootloader
Full disk encryption (implying /boot is encrypted a… Continue reading Secure boot + full disk encryption, should I sign the kernel?→

e-signature + digital signature aws md5

Posted on November 29, 2022 by user286122

I am trying to implement e-signature + digital signature to secure the e-signed document from altered, something like Docusign. I am using AWS s3 to store the documents.
My question are:

Is MD5 (checksum) enough to track if the signed doc… Continue reading e-signature + digital signature aws md5→

Digital Signature and Encryption Process / Hierarchy

Posted on November 25, 2022 by KTY Ning

I’m trying to get my head around this scenario. I understand that a private key can be used for signing a message to provide authentication and public key can be used for encrypting and its corresponding private key can be used to decrypt … Continue reading Digital Signature and Encryption Process / Hierarchy→