SecureBlackbox Knowledge Base

Recent PKI Articles


Can I detect insertion and removal of the hardware device (token, cryptocard)?

How to detect insertion and removal of the hardware device (token, cryptocard)?

How can I extract the certificate from the CRL (Certificate Revocation List)?

How to extract the certificate from the CRL (Certificate Revocation List)?

The certificate could not be validated with TElX509CertificateValidator, while the browser validates it fine. Why?

Why the certificate could not be validated with TElX509CertificateValidator, while the browser validates it fine.

After I export certificate to PFX file, Windows (or CryptoAPI) can't import this file. What happens?

What happens afet exporting certificate to PFX file, Windows (or CryptoAPI) can't import this file

Why am I getting "Input too long" error when trying to encrypt or decrypt the data?

Asymmetric (public-key) algorithms operate with relatively small chunks of data. The exact size depends on the key length and other factors. For example, with RS…

How do I sign / encrypt the text data (and not a file)?

How to sign / encrypt the text data (and not a file)?

When I try to sign the data using the certificate, contained in Windows (with non-exportable private key), only MD5 hash algorithm works, even if I manually specify SHA* algorithm. Why so?

Windows CryptoAPI doesn't support SHA algorithms for signing by default, so SecureBlackbox reverts to MD5 if CryptoAPI must be used for signing (as it happens in…

I can't add private key to my PKCS#11 device. Why?

Please check that your device supports the certificates and keys that you are trying to put there. Most devices don't support DSA certificates and private keys. …

How do I create my own X.509 certificate?

There are several options available. SecureBlackbox installation includes a pre-created certificate in PEM and PFX formats which include both private and public …

Does SecureBlackbox support cryptocards?

SecureBlackbox can access, use and manage X.509 certificates and associated private keys, stored on CryptoCards and USB CryptoTokens. The device should be access…

The certificate on a USB token is not visible from a service. How do I use such certificate?

The certificate on a USB token is not visible from a service. How to use such certificate?

Why does signing or decryption operation fail when my code is run in Windows service?

If you use certificates using Windows CryptoAPI interface (TElWinCertStorage class), you can face the problem when your code works fine in the regular applicatio…

I have a license for PDFBlackbox, XMLBlackbox or PKIBlackbox. How do I use timestamping?

How to use timestamping when possesing a license for PDFBlackbox, XMLBlackbox or PKIBlackbox.

How do I provide password to USB Based Token to retrieve ceriticate?

How to provide password to USB Based Token to retrieve ceriticate?

Can I sign a .NET assembly?

The question is what you want to do. There exist .NET signing (using RSA KeyPair) used for StrongNaming the assemblies, and there exists Authenticode which lets …

How do I do "code signing"?

Code signing of executables and DLLs in Windows PE format is properly named "Microsoft Authenticode". SecureBlackbox includes TElAuthenticodeSigner and TElAuthen…