http://blog.didierstevens.com/2008/01/23/quickpost-the-digital-signature-of-a-cryptographic-service-provider/ (blog 'DidierStevens) Thu, 29 Jul 2010 03:37:46 +0000 hourly 1 http://wordpress.com/ http://blog.didierstevens.com/2008/01/23/quickpost-the-digital-signature-of-a-cryptographic-service-provider/#comment-26906 Didier Stevens Tue, 29 Jan 2008 20:08:07 +0000 http://blog.didierstevens.com/2008/01/23/quickpost-the-digital-signature-of-a-cryptographic-service-provider/#comment-26906 Thanks for the info. That's a clever trick, I don't suppose your CSP is public? Thanks for the info. That’s a clever trick, I don’t suppose your CSP is public?

]]> http://blog.didierstevens.com/2008/01/23/quickpost-the-digital-signature-of-a-cryptographic-service-provider/#comment-26732 oldami Wed, 23 Jan 2008 13:30:05 +0000 http://blog.didierstevens.com/2008/01/23/quickpost-the-digital-signature-of-a-cryptographic-service-provider/#comment-26732 We had to go thru this a couple of years ago and were only required to provide the hash of the file to be signed. That makes it kinda hard for them to do any testing. On top of this, we just used a stub CSP that then calls the real DLL to do the work. Now we have a signature that we can use on any CSP we care to implement. We had to go thru this a couple of years ago and were only required to provide the hash of the file to be signed. That makes it kinda hard for them to do any testing. On top of this, we just used a stub CSP that then calls the real DLL to do the work. Now we have a signature that we can use on any CSP we care to implement.

]]>