Collaborate Disseminate
Is it possible to add a subject alternative name when converting PEM certificate to DER format.
openssl x509 -outform der -in Certificate.pem -out Certificate.der -extensions SAN -subject-alternative-name ‘alternative name’
If possible,… Continue reading How to add subject alternative name when converting PEM certificate to DER format?
Looking for ideas/feedback.
We have a django web-app with postgresql.
We use git for source code.
We have circleci for CI.
We deploy on AWS.
What is the most secured/best practices in terms of password management & key storage for o… Continue reading Best Practices for password/keys web-app management
I’m doing research on certificates and I’ve managed to find a dataset.
It is a single large text file where each line appears to be a PEM encoded certificate but I am unable to load them using pythons asn1crypto.x509 although I am able to … Continue reading Is this a PEM certificate?
We developed an application that reads a CMS encoded PEM file with this command:
$ openssl cms -verify -in filepath -inform PEM -noverify
The file is digitally signed, but we don’t care about it, as we only want to extract … Continue reading How to encode a CMS or S/MIME PEM file with OpenSSL not encrypted or digitally signed?
Navigating to the below URL link from the Mozilla Firefox and entering some website link and clicking on View, displays certificate Viewer
chrome://pippki/content/exceptionDialog.xul
After enabling Decrypt & scan HT… Continue reading Purpose of Decrypting & Scanning HTTPS traffic
The user upload a PEM and a KEY file or a PFX? to my service, where I need to store that somehow and when the user wants to make a payment request with my system I will fetch there a certificate for a storage API or something… Continue reading How to store customers certificate and make a request on their behalf
I sniffed the communication between the client and the server using Wireshark, and I found out that during the handshake session, the client sends its certificate to the server.
I’ve managed to get the client’s certificate, … Continue reading Unable to get information from a PKCS certificate
Is it possible to create a diffie-hellman param .pem file to force the openssl ctx to use only a certain type of dh exchange. For example, I know that it can be used to set the length of the dh key, but what about the type?
I am trying to load a passphrase-protected private SSH key from a file using the cryptography Python module. However, I’m not exactly sure how to proceed. The following yields a Crypto.Util.Padding.PaddingError: Padding is incorrect. error… Continue reading Loading a passphrase-protected private SSH key from a file with the cryptography Python module
Machine learning is all the rage – but don’t knock human savvy just yet! One weird character can be enough to alert a smart researcher… Continue reading Serious Security: When cryptographic certificates attack