I惴 developing an applet with JSS 4, my intentions are to access
Firefox愀 certs repositories and recover the user certificates, and
among them, only show to the user the certificates which have a private
key associated with. This is done, in order to user can select only
certificates which he/she can sign some code.
I惴 in trouble to achieve this, because I use the method
"getCertificates()" of CertStore class, that, following JSS javadoc,
recovers user certificates, which have a private key associated. But
when I call getCertificates, it gives me all the certificates which are
stored in a security device called: Software Security Device, unaware if
they are user, with a private key associated or not, or root CA
certificates... :-(
Another problem that i found is that I don愒 know how to associate a
certificate with its corresponding private key, since I recover both
collections separately (using getCertificates, and getPrivateKeys), and
if I have, for example, this result from these operations, respectively:
getCertificates() -->Cert A. Cert B. Cert C.
getPrivateKeys() --> PrivKey X.
澦ow I can know if privkey X corresponds to Cert A, B or C without doing
any cryptograhic operations between keys and certs signatures?
I惴 thinking about what I惴 missing or doing wrong, and what can I do to
recover the real user certificates from Firefox certs store and retrieve
their associated private keys.
Any help will be appreciated.
Thanks a lot for your time!!
hth,
Dennis
Thanks a lot.
Jesús el tuty.
Dennis Sinelnikov wrote:
> CryptoManager's findPrivKeyByCert(X509Certificate cert) might do the
> trick.
>
>
> hth,
> Dennis
>
> j.fabre wrote:
>> Hi all,
>>
>> I´m developing an applet with JSS 4, my intentions are to access
>> Firefox´s certs repositories and recover the user certificates, and
>> among them, only show to the user the certificates which have a
>> private key associated with. This is done, in order to user can
>> select only certificates which he/she can sign some code.
>>
>> I´m in trouble to achieve this, because I use the method
>> "getCertificates()" of CertStore class, that, following JSS javadoc,
>> recovers user certificates, which have a private key associated. But
>> when I call getCertificates, it gives me all the certificates which
>> are stored in a security device called: Software Security Device,
>> unaware if they are user, with a private key associated or not, or
>> root CA certificates... :-(
>> Another problem that i found is that I don´t know how to associate a
>> certificate with its corresponding private key, since I recover both
>> collections separately (using getCertificates, and getPrivateKeys),
>> and if I have, for example, this result from these operations,
>> respectively:
>> getCertificates() -->Cert A. Cert B. Cert C.
>> getPrivateKeys() --> PrivKey X.
>> żHow I can know if privkey X corresponds to Cert A, B or C without
>> doing any cryptograhic operations between keys and certs signatures?
>>
>> I´m thinking about what I´m missing or doing wrong, and what can I do
>> to recover the real user certificates from Firefox certs store and
>> retrieve their associated private keys.
>>
>> Any help will be appreciated.
>> Thanks a lot for your time!!
>>
> _______________________________________________
> dev-tech-crypto mailing list
> dev-tec...@lists.mozilla.org
> https://lists.mozilla.org/listinfo/dev-tech-crypto
>