Page 1 of 2

RSA 2048

Posted: Sun Apr 16, 2017 4:13 am
by Ibragim
Is there any open source applet for generating RSA key pair, signing tokens and storing windows certificates?
If it's possible, explain me, how can i store any .cer file in smartcard?

Re: RSA 2048

Posted: Mon Apr 17, 2017 2:19 am
by UNKNwYSHSA
ISOApplet or other applet OpenSC supported.

I had test ISOApplet:
1 Init ISOApplet with command: pkcs15-init.exe -r 0 -C
2 Store certificate to the card: pkcs15-init.exe -r 0 -X C:\Users\xxx\Desktop\test.cer (The certificate is encoded with BASE64.)
3 List certificate: pkcs15-tool.exe --reader 0 -c

Code: Select all

X.509 Certificate [Certificate]
        Object Flags   : [0x2], modifiable
        Authority      : no
        Path           : 3f0050153400
        ID             : 45
        Encoded serial : 02 10 2C80892E0115B0B77AA3594B9A733953

Re: RSA 2048

Posted: Tue Apr 18, 2017 12:23 am
by Ibragim
During pkcs15-init -r 0 -C i got:
"New User PIN.
Please enter User PIN: Please type again to verify: Unblock Code for New User PIN (Optional - press return for no PIN).
Please enter User unblocking PIN (PUK): Please type again to verify: Failed to create PKCS #15 meta structure: Transmit failed".
Why it could happen?

I have ACR 1281 1s dual reader, and ACOSJ Combi cards.

Re: RSA 2048

Posted: Tue Apr 18, 2017 1:24 am
by UNKNwYSHSA
The parameter -r 0 means using reader with index 0.
Maybe the reader you using now is not the first one.
use command opensc-tool.exe -l to list readers on your computer.

Re: RSA 2048

Posted: Tue Apr 18, 2017 2:11 am
by Ibragim
I've chosen right reader index :) . I think that smth with my smartcard, because in OpenSC wiki written, that ACOS5 isn't supported, as i've ACOSJ, maybe problem is in smartcard?

Re: RSA 2048

Posted: Tue Apr 18, 2017 3:57 am
by UNKNwYSHSA
Is the ISOApplet loaded and installed to your card?

Re: RSA 2048

Posted: Tue Apr 18, 2017 4:06 am
by Ibragim
Yes, installed, but not default selected

Re: RSA 2048

Posted: Tue Apr 18, 2017 5:17 am
by UNKNwYSHSA
I try it when install without default selected privilege, it is OK yet.
Is there's other question(s) with your card?

Which applet you loaded? Give me the url.

Re: RSA 2048

Posted: Tue Apr 18, 2017 5:21 am
by Ibragim
Is there another applet or way for storing windows .cer files. And if it's possible explain me how does windows logging on works?
where windows trying to find authorization data? What does this data looks like?

Re: RSA 2048

Posted: Tue Apr 18, 2017 5:25 am
by UNKNwYSHSA
For windows login?
Maybe you are looking for this article.
https://javacardos.com/wiki/Article/det ... dsApp.html