Monthly Archives: January 2005

Finding SN hash of assembly

Shawn blogs in detail about finding the SN hash of an assembly at http://blogs.msdn.com/shawnfa/archive/2005/01/26/361109.aspx  He also continued some other ideas at http://blogs.msdn.com/shawnfa/archive/2005/01/28/362901.aspx.  Nice work. —William

Posted in C# | 3 Comments

Get RSA Public key from Assembly or SNK File

I use this class to return RSA public key from Signed Assembly (i.e. SN assembly.)  Works with SNK file too (I think Whidbey will include this too). using System;using System.IO;using System.Text;using System.Xml; using System.Reflection;using System.Security.Cryptography; using System.Collections; namespace WSESimpleTCPDLL{ /// <summary> /// … Continue reading

Posted in C# | 36 Comments

WinLogon Helper class

Here is a class I used in other postings to get authenticate a user/password to Windows and optionally return a WindowsPrincipal object on success.  Useful for the tool bag. using System;using System.Runtime.InteropServices;using System.Security.Principal;using System.Security.Permissions;using System.Reflection; namespace WSESimpleTCPDLL{ public enum LogonType : … Continue reading

Posted in C# | 8 Comments

Get SecurityContextToken C# Code

[Updated 1/28/05]  – Encrypted the client public key (modulus).  Broke into 2 parts as full byte[] is too large for 1024 encrypt operation.  This encryption of public key is probably not required, but now attacker has NO information to work on.  – … Continue reading

Posted in WSE | 4 Comments

Create SecurityContextTokens without X509 Certs

So I wanted to roll my own SecurityContextToken (SCT) service.  Not because I want to reinvent the wheel, but because I did not want to have to use X509 certs and because I could not figure out how to issue … Continue reading

Posted in WSE | 15 Comments

X509 Certs -vs- Std RSA PKI

It easy to get lost in the hype regarding X509 certs.  Most things these days talk about X509 certs and using them for security.  However, I am not as impressed from a security perspective.  The underlying PKI is secure (as … Continue reading

Posted in Computers and Internet | 10 Comments

Trackbacks

I don’t like trackbacks.  They don’t flow with the replies.  You have to link to another window to read and then get lost in some other nesting.  It would seem better to just have a text reply and optionally a … Continue reading

Posted in Computers and Internet | 1 Comment