使用HttpClientCertificate與X509Certificate2檢查證書有效性
[英]Checking certificate validity using HttpClientCertificate vs. X509Certificate2
問題描述
我的IIS(Web服務器)需要客戶端證書,我需要檢查證書有效性並從數據庫中讀取一些信息並記錄(審計)
我有以下代碼
using System.Security.Cryptography.X509Certificates;
...
HttpClientCertificate cert = Request.ClientCertificate;
if (cert.IsPresent && cert.IsValid) {
X509Certificate2 cer = new X509Certificate2(cert.Certificate);
bool verified = cer.Verify();
...
AuditLog( ... );
}
cert.IsValid顯示證書有效。 我是否需要實例化X509Certificate2對象並重新檢查證書的有效性(為什么)?
1 個解決方案
解決方案1
3 已采納 2012-07-20 19:15:20
如果證書無效,你就不會這么做。 IIS應在握手期間檢查,如果無效則中止連接。 您需要做的就是驗證主題DN表示的身份是否有權成為此應用程序的客戶端。
X509Certificate2的RemoteCertificateValidationCallback
[英]RemoteCertificateValidationCallback with X509Certificate2
使用X509Certificate2在https中進行客戶端證書認證
[英]client certificate authentication in https using X509Certificate2
SignedXml.CheckSignature方法(X509Certificate2,false)不檢查證書有效性
[英]SignedXml.CheckSignature Method (X509Certificate2, false) does not check certificate validity
Windows Phone 8上的X509Certificate2到X509Certificate
[英]X509Certificate2 to X509Certificate on Windows Phone 8
使用流利的驗證從字符串驗證X509Certificate2
[英]Validation of an X509Certificate2 from a string Using fluent validation
如何使用 X509Certificate2 向 httpweb 請求添加證書
[英]how to add a cetificate to httpweb request using X509Certificate2
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.
相關問題
X509Certificate2信息
X509Certificate2的RemoteCertificateValidationCallback
X509Certificate2到EccKey
使用X509Certificate2在https中進行客戶端證書認證
通過 X509Certificate2 快速檢查加密值
SignedXml.CheckSignature方法(X509Certificate2,false)不檢查證書有效性
Windows Phone 8上的X509Certificate2到X509Certificate
使用流利的驗證從字符串驗證X509Certificate2
使用C#生成X509Certificate2對象
如何使用 X509Certificate2 向 httpweb 請求添加證書
相關標簽