Posted by Ugo Chirico
Wednesday, October 30, 2013 6:03:00 PM
One of the most frequently asked questions is:- "What is the PKCS#11 dll module for my token?
We just added in our wiki a page that reports a table that maps tokens with corresponding PKCS#11 module:
http://wiki.ncryptoki.com/Known-PKCS-11-modules.ashx
Posted by Ugo Chirico
Saturday, October 19, 2013 5:28:00 PM
Categories:
PKCS#11
Silverlight
We worked a lot in the past months on NCryptoki to find the best way to integrate PKCS#11 tokens in a web page (aspx, php, jsp, etc.). Till now we proposed the Java Applet approach based on JCryptoki and JQuery script to embedded the JCryptoki classes in the web page. Such a Java approach works as expected by has some not nice-to-have security issues that: 1) give a bad user experience; 2) are higly dependent on the JRE installed on the client side. So we searched for a better way. We ported the entire NCryptoki package to Silverlight 5 and we have created a Silverlight user control that exports the NCryptoki classes to the JavaScript world. This approach seems more robust and very nice respect to the user exeprience and doesn't give strong security issues.
You can see a demo (PKCS#11 dump) on my blog: http://www.ugochirico.com/post/2013/10/18/Call-PKCS11-from-Silverlight.aspx
Posted by Ugo Chirico
Wednesday, September 18, 2013 7:36:00 PM
Categories:
PKCS#11
We are happy to announce the new version 1.6.0.1 of NCryptoki.
Such a new version has been moved to .NET Framework 4.0 and doesn't have any C++ Managed Extension dll any more.
Release Notes:
- Moved to .NET Framework 4.0
- Unique version for 32 and 64 bit (compiled for AnyCPU)
- Added several mechanism parameters
- Removed dependency from NCryptokiMngd.dll
- Added support for Mono
Posted by Ugo Chirico
Thursday, September 5, 2013 2:35:00 PM
Categories:
PKCS#11
We just released the beta version of NCryptoki for .NET framework 4.x.
Try it in your application and let us know your response.
Posted by Ugo Chirico
Thursday, January 24, 2013 11:13:00 PM
Categories:
JQuery
PKCS#11
After the latest release of NCryptoki and NDigitSign, we defined the new roadmap.
We were still working on Silverlight version but we had several stops to fulfill several urgent customers requests about NCryptoki and NDigitSign. One of the latest requests was related to a way to use/call a PKCS#11 token/HSM from a web page without using SIlverlight.
A smart solution that works on any browser, on any platform, is by using a JQuery Plugin that can be embedded in any web page and that supply a PKCS#11 interface to JavaScript.
We worked a lot on that and now we are happy to announce that we are ready to release the first PKCS#11 JQuery Plugin that allows to use a PKCS#11 token in any web page.
We are now finishing the documentation and In the next days we'll publish the first release.
Posted by Ugo Chirico
Wednesday, January 23, 2013 11:29:00 AM
Categories:
Digital Signature
NDigitSign
We are having a lot of requests about our Digital Signature API, expecially for the part related to PDF Digital Signature.
In the past weeks we worked a lot to release a new version of NDigitSign with several new features and an updated example (FullTestDigitSign) that shows how to use all NDigitiSign functions.
Download it in the Downlod section and try it.
Posted by Ugo Chirico
Monday, May 28, 2012 11:04:00 AM
Categories:
Silverlight
We are happy to announce that we are working on the new version 2.0 that will support Silverlight.
Several customers asked us for a Silverlight version so we cannot avoid to port NCryptoki on the Silverlight platform.
We'll publish a beta version on this site very soon. Stay updated!
Posted by Ugo Chirico
Sunday, November 20, 2011 3:58:00 PM
Categories:
PKCS#11
One of our customers asked an interesting questions:- "Is it possible to export a private key using NCryptoki?"
The answer is yes if, and only if, the private key is extractable (some tokens may not allow to extract a private key).
Below there is a snippet to export a private key:
// Searchs for an RSA private key object
CryptokiCollection template = new CryptokiCollection();
template.Add(new ObjectAttribute(ObjectAttribute.CKA_CLASS, CryptokiObject.CKO_PRIVATE_KEY));
template.Add(new ObjectAttribute(ObjectAttribute.CKA_KEY_TYPE, Key.CKK_RSA));
// Launchs the search specifying the template just created
CryptokiCollection objects = session.Objects.Find(template, 1);
if(objects.count == 0)
{
// PRIVATE KEY NOT FOUND
return false;
}
// takes the first object as key
RSAPrivateKey privateKey = (RSAPrivateKey)objects[0];
// check if extractable
if(!privateKey.Extractable)
{
// NOT EXTRACTABLE
return false;
}
// Extract modulus and private exponent
byte[] modulus = privateKey.Modulus;
byte[] privateExponent = privateKey.PrivateExponent;
Posted by Ugo Chirico
Monday, November 14, 2011 1:09:00 PM
Categories:
Virtual Cryptoki
After the new release of Virtual Cryptoki, that fixes several known bugs (that many of you have asked for a long time), we have found a very strange bug in our Virtual Cryptoki. If the smart card service is down the Virtual Cryptoki generates an exception while opening a session.
We have fixed it in the new version 1.0.6.4.
Posted by Ugo Chirico
Monday, November 14, 2011 1:04:00 PM
This is the NCryptoki official blog.
We'll post news, case studies, technical matters, and so on about NCryptoki.