stackoom
  简体   繁体   中英

Certificate to be used for encryption in iOS MDM

 原文  2013-08-20 09:35:25       c#/ ios/ certificate/ mdm

Question

I am facing issue in encrypting the final configuration profile to be sent to the iOS device(Phase 3).

I am using the Bouncy castle library to encrypt my final profile( http://elian.co.uk/post/2009/07/29/Bouncy-Castle-CSharp.aspx ).

Questions:

  1. Which certificate should I use for encrypting the profile, Is it a CA or Server certificate created or Certificate returned after Phase 2(SCEP)?

A code sample would be very helpful.

NOTE: The profile is getting installed successfully without encryption or even if I sign the profile.

2 answers

solution1
 1  2013-08-20 13:16:30

On the server side you always

  • encrypt using device identity cert (which is generated through SCEP or PKCS12)
  • sign using Server certificate

solution2
 0  2013-09-24 12:02:19

This has to be CMSAlgorithm.DES_EDE3_CBC encrypted from the identity certificate and Base64 encode the result. That result needs to be signed as you did in the previous stage.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Encryption with certificate Restrict Characters used in Encryption RSA Reverse Encryption using Certificate Signing token with ECC encryption certificate IOS MDM Push Notification Issue using Pushsharp C# RSA Encryption and Decryption with X509certificate2 Digital signature with x509 certificate and encryption ADFS token encryption certificate chain validation fails WCF Message Encryption with in memory x509Certificate2 Certificate Rijndael encryption between iOS and .NET
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM