Reputation: 3257
How to do CRL Check in a certificate, using something different from X509Chain (C#)?
In .net I am aware that I can use X509Certificate chain to validate the a given certificate.
I searched and found quite a few examples on how to do it. But if I want a little more control over it, I can't. By design it is very high level.
I was wanting something as low as this: Nakov's code.
Where I can download at will, and control the cache as I need or design.
Does anyone know any framework, or technique to use with BouncyCastle or IText?
thanks in advance
Upvotes: 2
Views: 1523
Answers (2)
Reputation: 46040
Our SecureBlackbox offers TElX509CertificateValidator component which can be fully controlled and tuned up as you like. And if it's not enough, - TElX509CertificateValidator uses only functions and classes offered by SecureBlackbox so you can build your own validation procedures. SecureBlackbox supports OCSP requests and CRLs and much more
Upvotes: 1
Reputation: 12880
Why can't you use the standard ServicePointManager.ServerCertificateValidationCallback?
An application can set the ServerCertificateValidationCallback property to a method to use for custom validation by the client of the server certificate.
Upvotes: 1
Related Questions
- Check signature for x509 certificate
- How to fully validate a X509 certificate?
- How to validate X509 certificate?
- How to verify X509 cert without importing root cert?
- C# How can I validate a Root-CA-Cert certificate (x509) chain?
- C# X509 certificate validation, with Online CRL check, without importing root certificate to trusted root CA certificate store
- c# verify certificate in CRL list
- How do I perform the hardest possible SSL certificate check with .NET code?
- Create and verify x509 certificates in .Net
- Verify a CA Certificate with a public key in C#