headers
Pawling, John | 1 Aug 2002 17:48

v1.4 Enhanced SNACC Freeware Now Available


All,

Getronics Government Solutions has delivered the v1.4 eSNACC
Abstract Syntax Notation.1 (ASN.1) Compiler, C++ library and C library
source code compilable for Linux, Sun Solaris 2.8 and Microsoft (MS) 
Windows NT/98/2000/XP.  The eSNACC software is freely available to
everyone from: <http://www.getronicsgov.com/hot/snacc_home.htm>.

The eSNACC ASN.1 software can be used to ASN.1 encode and decode
objects.  In past releases, Getronics improved the eSNACC C++ 
library to implement the Distinguished Encoding Rules (DER), 
support large ASN.1 INTEGERs, and improve memory usage.    

v1.4 eSNACC enhancements (compared to v1.3 R10 release):

1) Enhanced AsnInt class to support string form of large 
integers (binary & hex strings).   

2) Enhances AsnInt so that it does not use AsnOcts or 
CSM_Buffer. 

3) Remove CSM_Buffer as base class for AsnInt and all of 
the string classes.  Also deleted the xxxStringSNACC 
classes (i.e., BMPStringSNACC).  

4) Added the remaining asn-useful types (UTCTime, 
GeneralizedTime, etc.) into eSNACC C and C++ libraries as
native built-in types.  This removes the unnecessary
complexity of having to build a boot compiler prior to
(Continue reading)

Permalink | Reply | 0 comments |
headers
Pawling, John | 1 Aug 2002 19:25

v2.1 Certificate Management Library (CML) Now Available


All,

Getronics Government Solutions has delivered the Version 2.1 
Certificate Management Library (CML) for Microsoft Windows, 
Sun Solaris and Linux.  The v2.1 CML and documentation is 
freely available at:
<http://www.getronicsgov.com/hot/cml_home.htm>.  

Applications requiring Public Key Infrastructure (PKI) security 
services can use the CML to meet their X.509 certificate and 
Certificate Revocation List (CRL) processing requirements.  
The v2.1 CML is described in the v2.1 CML Application Programming
Interface (API) document.  It implements the 2000 X.509 Recommendation
certification path verification processing rules and SDN.706 profile.
It meets the majority of the IETF PKIX RFC 3280 Certificate/CRL Profile
requirements.  There are some unsupported features such as 
Delta CRLs.  The v2.1 CML Abstract Syntax Notation One (ASN.1)
decodes X.509 Certificates and CRLs.  It requires the v1.4
Enhanced SNACC ASN.1 software that is freely available from:
<http://www.getronicsgov.com/hot/snacc_home.htm>.

The CML provides robust certificate path building capabilities such
as using cross certificates.  The CML uses the accompanying Storage 
and Retrieval Library (SRL) (optionally) to provide local certificate
and CRL storage management functions.  The SRL (optionally) provides 
remote directory retrieval capabilities using the Lightweight
Directory Access Protocol (LDAP).

The CML has been thoroughly tested including validating X.509
(Continue reading)

Permalink | Reply | 0 comments |
headers
Pawling, John | 1 Aug 2002 20:08

v2.1 S/MIME Freeware Library (SFL) Now Available


All,

Getronics Government Solutions has delivered the Version 2.1 
S/MIME Freeware Library (SFL) source code.  The SFL source code files
and documents are freely available at 
<http://www.getronicsgov.com/hot/sfl_home.htm>.  

The SFL implements the IETF S/MIME v3 RFC 2630 Cryptographic Message 
Syntax (CMS) and RFC 2634 Enhanced Security Services (ESS)
specifications.  It also implements portions of the RFC 2633 Message 
Specification and RFC 2632 Certificate Handling document.  When used in 
conjunction with the Crypto++ freeware library, the SFL implements the 
RFC 2631 Diffie-Hellman (D-H) Key Agreement Method specification.  It 
has been successfully tested using the Microsoft (MS) Windows 
NT/98/2000/XP, Linux and Sun Solaris 2.8 operating systems.  Further 
enhancements, ports and testing of the SFL are still in process.  
Further releases of the SFL will be provided as significant 
capabilities are added. 

The SFL has been successfully used to sign, verify, encrypt and decrypt 
CMS/ESS objects using: DSA, E-S D-H, 3DES algorithms provided by the 
Crypto++ library; RSA suite of algorithms provided by the RSA BSAFE 6.0
Crypto-C and Crypto++ libraries; and Fortezza suite of algorithms 
provided by the Fortezza Crypto Card.  The v2.1 SFL uses the v2.1 
Certificate Management Library (CML) and v1.4 Enhanced SNACC (eSNACC) 
ASN.1 C++ Library to encode/decode objects.  The v2.1 SFL release 
includes: SFL High-level library; Free (a.k.a. Crypto++) Crypto Token
Interface Library (CTIL); BSAFE CTIL; Fortezza CTIL; SPEX/ CTIL; 
PKCS #11 CTIL; Microsoft CAPI v2.0 CTIL; test utilities; test drivers;
(Continue reading)

Permalink | Reply | 0 comments |
headers
Chee Leong | 2 Aug 2002 04:55
Picon
Favicon

Error in compiling sm_pkcs11Free3DLL


Hi,

I got the following error while compiling 
sm_pkcs11Free3DLL on Windows platform:

Configuration: sm_pkcs11Free3DLL - Win32 Debug
Compiling... sm_pkcs11Free3.cpp

P:\smimeR2.0.1\SMIME\alg_libs\sm_pkcs11Free3\sm_pkcs11Free3.h(182)
: error C2250: 'CSM_Pkcs11Free3' : ambiguous
inheritance of
'CERT::CSM_Pkcs11::DeriveMsgAlgFromCert'
../sm_pkcs11\sm_pkcs11.h(120) : see declaration of
'CSM_Pkcs11'

P:\smimeR2.0.1\SMIME\alg_libs\sm_pkcs11Free3\sm_pkcs11Free3.h(182)
: error C2250: 'CSM_Pkcs11Free3' : ambiguous
inheritance of 'CERT::CSM_Free3::DeriveMsgAlgFromCert'
../sm_free3\sm_free3.h(102) : see declaration of
'CSM_Free3'

Can anyone help?? Thanks.

Regards,
Chee Leong

__________________________________________________
Do You Yahoo!?
Win a DV camera, join our "30 Seconds of Fame" contest
(Continue reading)

Permalink | Reply | 0 comments |
headers
Colestock, Robert | 5 Aug 2002 20:24

RE: Error in compiling sm_pkcs11Free3DLL


Chee:

The current release of the SFL does not have this problem.

I believe the fix was to add these 2 methods to the CSM_Pkcs11Free3
class definition to remove the ambiguity:

<<<<< in sm_pkcs11free3.h >>>>>
...
class SM_PKCS11FREE3DLL_API CSM_Pkcs11Free3 : public CSM_Pkcs11,
                                              public CSM_Free3
{
public :
...
      CSM_Alg *DeriveMsgAlgFromCert(CSM_CertificateChoice &Cert);
      CSM_Alg *DeriveMsgAlgFromCert(CSM_Alg &Alg)  { return NULL;};
...

Bob Colestock

-----Original Message-----
From: Chee Leong [mailto:cheeleong_chua <at> yahoo.com.sg] 
Sent: Thursday, August 01, 2002 10:55 PM
To: imc-sfl <at> imc.org
Subject: Error in compiling sm_pkcs11Free3DLL

Hi,

I got the following error while compiling
(Continue reading)

Permalink | Reply | 0 comments |
headers
Olivier.Rey | 13 Aug 2002 12:37
Picon

Signed attribute troubles


Hi all,
I have 2 questions:

* I am trying to add the ESSCertID attribute (CSM_SigningCertificate) to a
signature, but I could not find out how to create a CSM_SigningCertificate
object?
The main problem comes from the (CSM_CertIDLst) m_Certs member: how can I
get the hash of a certificate, and how can I create an IssuerSerial1
object?

* I would try to add new signed attributes (for example "claimed role" from
RFC 3126) which are not implemented in CSM_Attrib class. Could you please
tell me how I can do that? (I think the easiest way is to add new SNACC
functions in sm_ess.cpp. Am I right?)

Thanks in advance,
     Olivier
Permalink | Reply | 0 comments |
headers
Colestock, Robert | 13 Aug 2002 17:51

RE: Signed attribute troubles


Olivier:

This class is demonstrated by loading from a text configuration file in
"./SMIME/testsrc/util/sm_CLMsgToSign.cpp" around line 938
(CL_MsgToSign::FillSigningCertificate(...) is also in the same source
file; I have added comments here):

...
        if (SM_GetKwValue("SigningCertificate", kwValue, section) ==
            SM_NO_ERROR && !strstr(kwValue, "NULL"))
        {
            CSM_SigningCertificate *pTmpSigningCert = NULL;

            if ((pTmpSigningCert = new CSM_SigningCertificate) == NULL)
                SME_THROW(SM_MEMORY_ERROR, NULL, NULL);

            if ((status =
                    FillSigningCertificate(kwValue, pTmpSigningCert,
                                           m_outputFlag)) ==
SM_NO_ERROR)
            {					<<<<<RWC;ADD TO ATTR
LIST.
                if (pAttributes->m_pAttrs == NULL)
                    pAttributes->m_pAttrs = new CSM_AttribLst;
                pAttr = pAttributes->m_pAttrs->Append();
                pAttr->SetSigningCertificate(pTmpSigningCert);
                delete pTmpSigningCert;
            }
        }
(Continue reading)

Permalink | Reply | 0 comments |

Gmane