Problem Signing Email with Digital Certificate from Smart Card, Outlook 2013

Similar Messages

• NEED ASAP HELP WITH TRANSFERRING PHOTOS FROM SMART CARD TO IPHOTO 09

  I have several SD's (512 mg - 2 gig) that have important photos which need to be transferred from the card to my MAC Pro. Problem is that I cannot find my usb cable that came with my camera so must take straight from card. When I tried to put the first card into the SD drive, the card got stuck and I had to spend hours getting it out with a pair of tweezers. I've never had so much trouble inserting a card into my computer and transferring the photos onto my computer. I need HELP QUICKLY!!! AM TRYING TO SELL BDRM FURNITURE ON CRAIGS LIST BEFORE NEXT FRIDAY & HAVE SOME NEAT PICS TO ACCOMPANY AD. THANKS SO MUCH!!! This has taken me ALL weekend!!!

  I suggest you get a card reader and use it to upload from the card to a folder on the desktop and then into iPhoto. I got mine at WalMart for $10.

• Problems sending emails with iPhone 3G and outlook exchange

  I have a problem sending email with exchange. Receiving and answering mail works fine and calender updates work fine. However when I initiate an email from the phone it syncs and ends up in the sent folder in the computer but never reaches the recipient. I have tried this many times with different recipients and phones. It only happens from my iphone and ipad. Any suggestions?
  Any help much appreciated

  The iPhone you returned is still syncing against your server and locking out your account. Someone possibly has access to your mail data. I'd recommend having your Exchange Administrator install the Microsoft Exchange Server ActiveSync Web Administration Tool (http://www.microsoft.com/downloads/details.aspx?FamilyID=E6851D23-D145-4DBF-A2CC -E0B4C6301453&displaylang=en) and attempt to wipe/delete/block that other iPhone.
  Message was edited by: ethanm

• Signing web form data with a PKCS#11 Smart Card

  Hi,
  I would like to know what is the best solution to sign a web form using a PKCS#11 Smart card.
  I already read some examples where is used an applet based on the Sun PKCS#11 Provider.
  The problem that i found in this solution is the need of java 5.0 and the need to know the filename that have the implementation of the native library.
  My problem is that the web form is to be available in internet and can be sign with more than one smart card reader, so i didn't like to impose the java 5.0 and i don't have any way of knowing the implementation filename.
  Thanks in advanced,
  Ricardo Constantino
  Accenture

  Can I ask you one question?
  Which driver did you specify? I mean the smarcard reader driver or the smartcard itself driver?
  If the second, does it come along with the card? because as far as I know I just got the smart card but no software at all (apart the smartcard reader driver).
  Can you help me out with this?
  thanks in advance,
  Marco

• Request a digital certificate from a certification authority

  How do I request a digital certificate from a certification authority?

  You will generate and submit a certificate-signing request to a vendor.  Here's the general sequence for obtaining a certificate for OS X Server 10.8.

• I'm using iphone 4S, and I can not open PDF file only from my husband email that using Mic outlook. It was very weird because I can received other email with pdf file from other people. can someone help.

  I'm using iphone 4S and ipad mini, and I can not open PDF file only from my husband email that using Mic outlook. It was very weird because I can received other email with pdf file from other people. Can someone help...
  Thanks in advance

  Hi Eidda,
  This may because the attachment is a winmail.dat file. I would recommend taking a look at the article below for more information. Note: the article is written for OS X mail, but does also apply to this situation.
  Mac OS X Mail: What is a winmail.dat attachment?
  http://support.apple.com/kb/HT2614
  -Griff W.

• How to access 802.1x authentication wired nework with digital certificate?

  How can I access 802.1x authentication wired network with digital certificate?
  I can access the network in windows with the following configutaion:
  BUT in my lion, I had import the digital certifacte. While I connected to the network, I was prompted:
  Enter the name and password for this 802.1X network
  I could not get the opportunity to select my digital certificate? But my colleague can.
  iPhone Configuration Utility seemed to provide wireless 802.1X authentication configuration file . And in my work background, most people use the windows. And there isnot a lion server to provide a configuration file.

  Dear Rune,
  Thank you for reaching Small Business Support Community.
  If you have already followed the 802.1X Supplicant configuration described in page 112, chapter 6, on the admin guide;
  http://www.cisco.com/en/US/docs/wireless/access_point/csbap/wap121/administration/guide/WAP121_321_AG_en.pdf
  All I can suggest you is to make sure you are running on the latest firmware release version 1.0.4.2;
  http://software.cisco.com/download/release.html?mdfid=284152656&flowid=32563&softwareid=282463166&release=1.0.4.2&relind=AVAILABLE&rellifecycle=&reltype=latest
  And then contact the Small Business Support Center to have a TAC engineer figure this out;
  https://www.cisco.com/en/US/support/tsd_cisco_small_business_support_center_contacts.html
  Please do not hesitate to reach me back if there is anything I may assist you with in the meantime.
  Kind regards,
  Jeffrey Rodriguez S. .:|:.:|:.
  Cisco Customer Support Engineer
  *Please rate the Post so other will know when an answer has been found.

• PKI Certificates on smart cards.

  Hi techies,
  I am a Smart card operating system developer.
  I m working on a PKI OS project.
  and i m stuck while implementing the verify certificate command.
  Well currently the issue i m facing is how to store certificates on smart card.
  i mean which file to use, which format to use, (may be x.509), which document is relevent for implementation point of view.
  could anybody help me out.
  Regards,
  Rishabh Agarwal

  Hi Polat,
  thanks for reply as i thought i wont have any reply.
  well I am talking about a native card not a java card but i think it doesnt make any diffrence as at application level both are same. (diffrent at implementation level not application level)
  so here i got some clue after searching meterial and brainstorming... we need to read following documents
  1) PKCS#1 v2.1
  2) PKCS#15
  3) PKCS#7 (may be, as i havent gone through it yet)
  I am almost ready with my OS for native card and have tested some its features except related to certificate...
  Now i want to test it with some CSP application i dont know how will it go... i m trying to get some demo CSP code in which i can change and test my card by integrating it to some windows aplications.
  if you have any clue about abovementioned then pls let me know..
  and please ask if you need any help from my side
  Regards
  Rishabh Agarwal

• I cannot email attachment directly from Acrobat to Outlook 2013.

  I get the message "there is no default mail client"  But outlook is correctly set as default.  can email from other apps, just not acrobat. I have differnt computers with different systems and each cannot email to outlook.
  Using Acrobat 11 Standard to Outlook 2013 64bit under Win 8.1 Pro 64bit and Acrobat 9 to Outlook 2013 64bit under Win 7 Pro 64bit.  Also, Acrobat 11 to Outlook 2013 64 bit under Win 7 Pro 64 bit. The common element is Outlook 2013, but Microsoft Tech says it is a Adobe issue since other apps work.  Was using Acrobat 9 to Outlook 2003 32bit under Win XP 32bit.
  Is there an issue with 32 bit Acrobat to 64bit Outlook 2013?

  Yes.  I discovered that. So I upgraded Acrobat to v11.0.5 on that computer.  I have 2 computers in my network, both run Win 7 Pro 64bit; Acrobat 11.0.5; Outlook 2013 64bit.  Each computer will not email, returned the message "there is no default mail client". (Each computer has a separate license for Acrobat, Outlook 2013) 
  Edited the registry in 1 computer, it worked. This computer was running Acrobat 11.0.0 at the time of the registry edit.  Acrobat upgraded automatically to v11.0.5 it corrupted the registry files, Outlook would not open until it rejected the Acrobat Add-in "Acrobat PDFMaker Office COM Addin".  This happened in both computers. I then edited the registry in the other computer and it worked.
  Each computer boots up to "there is no default mail client" pop up. Ran repair in both Acrobat and Outlook, didn't work. No issue other than the Addins corrupts Outlook 2013. Each computer has the same issue.  Home computer with Win 8 Pro 64bit, Acrobat 11.0.5, Outlook 2013 64bit, with Addins and registry edit, is working fine. 
  The issue seems to be 32bit Acrobat conflicts with 64bit Outlook 2013. What does the Addin do?

• How to make report with access 2010 from SharePoint Discussion lists 2013

  HI,
  I want to make an access report from SharePoint Discussion lists 2013. When i open the list with access, the body of the list is in HTML format in access. Also if i reply something to one subject in the discussion, the reply is not mapped to that subject
  but instead it is shown as a separate entry in the database.
  Anyone can please help?
  SAN
  Santhiya
  Santhiya

  Hi Santhiya,
  I have seen a similar post from you, my understanding is that you wonder that the reply is mapped to the related subject. You can take a look at Daniel's reply in the following thread:
  http://social.technet.microsoft.com/Forums/en-US/dfb5bcb9-0076-412a-b34f-46aa9cfba876/how-to-make-report-with-access-2010-from-sharepoint-discussion-lists-2013?forum=sharepointgeneral
  Thanks,
  Wendy
  Wendy Li
  TechNet Community Support

• ICould prevents reply e-mails from sending in Outlook 2013

  iCloud add-in prevents reply e-mails from sending in Outlook 2013.  The Reply messages stay in Outbox. The Italic title returns to normal instantly. Any ideas to correct problem?

  Hi,
  Based on your description, users can move messages that don’t contain attachments to any other folders without any problem( not only subfolder of the Inbox ), and there is problem to move messages that contains attachment to whatever folders, right?
  Please check this issue in OWA.
  Please use the 'Move' operation from the context menu of the item to check this issue in Outlook.
  Please switch to a PC not joined your domain to check this issue.
  Best Regards.
  Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact [email protected]
  Lynn-Li
  TechNet Community Support

• Problem signing PDF from smart card - BouncyCastle, IAIK Wrapper, iText

  Hello!
  I need to sign and timestamp a PDF document with a smartcard. I'm using Java 1.6, iText to manage PDF, BouncyCastle to deal with cryptography and the free IAIK WRAPPER to access the smartcard.
  I've already searched the Internet to solve my problem, read the PDF specifications about the signature and followed snippets that should've worked, but after a couple of weeks I still don't have working code, not even for the signature. All the tries I made yield messages like "Signature has been corrupted" or "Invalid signature" (I can't remember the exact messages, but they're not in English anyway :D ) when I verify the signature in Adobe Reader.
  My first goal was to use an encapsulated signature, using filter Adobe.PPKLITE, subfilter adbe.pkcs7.sha1 and a DER-Encoded PKCS#7 object as content.
  Among the tries I made, I used code such as (I don't include all modifications, just the ones I deem closer to the right approach):
       // COMMON - START
       ///// selectedKey is a iaik.pkcs.pkcs11.objects.Key instance of the private key I'm taking from the SC
       RSAPrivateKey signerPrivKey=(RSAPrivateKey)selectedKey;
       CertificateFactory certificateFactory=CertificateFactory.getInstance("X.509");
       ///// correspondingCertificate is a iaik.pkcs.pkcs11.objects.X509PublicKeyCertificate instance of the certificate I'm taking from the SC
       byte[] derEncodedCertificate=correspondingCertificate.getValue().getByteArrayValue();
       X509Certificate signerCert=(X509Certificate)certificateFactory.generateCertificate(new ByteArrayInputStream(derEncodedCertificate));
       Provider provider=new BouncyCastleProvider();
       Security.addProvider(provider);
       ///// session is an instance of iaik.pkcs.pkcs11.Session
       session.signInit(Mechanism.SHA1_RSA_PKCS, signerPrivKey);
       File theFile = new File("C:\\toSign.pdf");
       FileInputStream fis = new FileInputStream(theFile);
       byte[] contentData = new byte[(int) theFile.length()];
       fis.read(contentData);
       fis.close();          
       PdfReader reader = new PdfReader(contentData);
       ByteArrayOutputStream baos = new ByteArrayOutputStream();
       PdfStamper stp = PdfStamper.createSignature(reader, baos, '\0');
       PdfSignatureAppearance sap = stp.getSignatureAppearance();
       // COMMON - END
       java.security.cert.X509Certificate[] certs=new java.security.cert.X509Certificate[1];
       CertificateFactory factory=CertificateFactory.getInstance("X.509");          
       certs[0]=(X509Certificate)factory.generateCertificate(new ByteArrayInputStream(correspondingCertificate.getValue().getByteArrayValue()));
       sap.setSignDate(new GregorianCalendar());
       sap.setCrypto(null, certs, null, null);
       sap.setReason("This is the reason");
       sap.setLocation("This is the Location");
       sap.setContact("This is the Contact");
       sap.setAcro6Layers(true);
       PdfSignature dic = new PdfSignature(PdfName.ADOBE_PPKLITE, PdfName.ADBE_PKCS7_SHA1);
       dic.setDate(new PdfDate(sap.getSignDate()));
       dic.setName(PdfPKCS7.getSubjectFields((X509Certificate)certs[0]).getField("CN"));
       sap.setCryptoDictionary(dic);
       int csize = 4000;
       HashMap exc = new HashMap();
       exc.put(PdfName.CONTENTS, new Integer(csize * 2 + 2));
       sap.preClose(exc);
       MessageDigest md = MessageDigest.getInstance("SHA1");
       InputStream s = sap.getRangeStream();
       int read = 0;
       byte[] buff = new byte[8192];
       while ((read = s.read(buff, 0, 8192)) > 0)
            md.update(buff, 0, read);
       byte[] signature=session.sign(buff);
       CMSSignedDataGenerator generator = new CMSSignedDataGenerator();
       ArrayList list = new ArrayList();
       for (int i = 0; i < certs.length; i++)
            list.add(certs);
       CertStore chainStore = CertStore.getInstance("Collection", new CollectionCertStoreParameters(list), provider);
       generator.addCertificatesAndCRLs(chainStore);
       CMSProcessable content = new CMSProcessableByteArray(md.digest());
       CMSSignedData signedData = generator.generate(CMSSignedDataGenerator.ENCRYPTION_RSA, content, true, provider);
       byte[] pk = signedData.getEncoded();
       byte[] outc = new byte[csize];
       PdfDictionary dic2 = new PdfDictionary();
       System.arraycopy(pk, 0, outc, 0, pk.length);
       dic2.put(PdfName.CONTENTS, new PdfString(outc).setHexWriting(true));
       sap.close(dic2);
       File newOne = new File("C:\\signed.pdf");
       FileOutputStream fos = new FileOutputStream(newOne);
       fos.write(baos.toByteArray());
       fos.close();
  I figured this is the right approach, but I need a way to generate the CMSSignedData instance, which can't be done using addSigner (the only documented way I found), since the private key is not extractable from a smart card...
  Then I decided to give up and try with a detached signature:
       // COMMON - START
       // Same as above
       // COMMON - END
       sap.setSignDate(new GregorianCalendar());
       java.security.cert.X509Certificate[] certs=new java.security.cert.X509Certificate[1];
       CertificateFactory factory=CertificateFactory.getInstance("X.509");          
       certs[0]=(X509Certificate)factory.generateCertificate(new ByteArrayInputStream(correspondingCertificate.getValue().getByteArrayValue()));
       sap.setCrypto(null, certs, null, PdfSignatureAppearance.SELF_SIGNED);
       sap.setSignDate(java.util.Calendar.getInstance());
       sap.setExternalDigest (new byte[8192], new byte[20], "RSA");
       sap.preClose();
       MessageDigest messageDigest = MessageDigest.getInstance ("SHA1");
       byte buff[] = new byte[8192];
       int n;
       InputStream inp = sap.getRangeStream ();
       while ((n = inp.read (buff)) > 0)
            messageDigest.update (buff, 0, n);
       byte hash[] = messageDigest.digest();
       byte[] signature=session.sign(hash);
       PdfSigGenericPKCS sg = sap.getSigStandard ();
       PdfLiteral slit = (PdfLiteral)sg.get (PdfName.CONTENTS);
       byte[] outc = new byte[(slit.getPosLength () - 2) / 2];
       PdfPKCS7 sig = sg.getSigner ();
       sig.setExternalDigest (session.sign(hash), hash, "RSA");
       PdfDictionary dic = new PdfDictionary ();
       byte[] ssig = sig.getEncodedPKCS7();
       System.arraycopy (ssig, 0, outc, 0, ssig.length);
       dic.put (PdfName.CONTENTS, new PdfString (outc).setHexWriting(true));
       sap.close (dic);
       File newOne = new File("C:\\signed.pdf");
       FileOutputStream fos = new FileOutputStream(newOne);
       fos.write(baos.toByteArray());
       fos.close();
  I'm still stuck to the signature process, can anyone please tell me what I'm doing wrong and help me (snippets would be deeply appreciated), maybe even changing approach in order to be able to add a digital timestamp?
  Thank you very much in advance!
  PS: I had also tried to use the SunPKCS11 provider to access the smart card, I gave up for similar problems, but if someone has suggestions using it, they're welcome! :D

  Hello!
  I need to sign and timestamp a PDF document with a smartcard. I'm using Java 1.6, iText to manage PDF, BouncyCastle to deal with cryptography and the free IAIK WRAPPER to access the smartcard.
  I've already searched the Internet to solve my problem, read the PDF specifications about the signature and followed snippets that should've worked, but after a couple of weeks I still don't have working code, not even for the signature. All the tries I made yield messages like "Signature has been corrupted" or "Invalid signature" (I can't remember the exact messages, but they're not in English anyway :D ) when I verify the signature in Adobe Reader.
  My first goal was to use an encapsulated signature, using filter Adobe.PPKLITE, subfilter adbe.pkcs7.sha1 and a DER-Encoded PKCS#7 object as content.
  Among the tries I made, I used code such as (I don't include all modifications, just the ones I deem closer to the right approach):
       // COMMON - START
       ///// selectedKey is a iaik.pkcs.pkcs11.objects.Key instance of the private key I'm taking from the SC
       RSAPrivateKey signerPrivKey=(RSAPrivateKey)selectedKey;
       CertificateFactory certificateFactory=CertificateFactory.getInstance("X.509");
       ///// correspondingCertificate is a iaik.pkcs.pkcs11.objects.X509PublicKeyCertificate instance of the certificate I'm taking from the SC
       byte[] derEncodedCertificate=correspondingCertificate.getValue().getByteArrayValue();
       X509Certificate signerCert=(X509Certificate)certificateFactory.generateCertificate(new ByteArrayInputStream(derEncodedCertificate));
       Provider provider=new BouncyCastleProvider();
       Security.addProvider(provider);
       ///// session is an instance of iaik.pkcs.pkcs11.Session
       session.signInit(Mechanism.SHA1_RSA_PKCS, signerPrivKey);
       File theFile = new File("C:\\toSign.pdf");
       FileInputStream fis = new FileInputStream(theFile);
       byte[] contentData = new byte[(int) theFile.length()];
       fis.read(contentData);
       fis.close();          
       PdfReader reader = new PdfReader(contentData);
       ByteArrayOutputStream baos = new ByteArrayOutputStream();
       PdfStamper stp = PdfStamper.createSignature(reader, baos, '\0');
       PdfSignatureAppearance sap = stp.getSignatureAppearance();
       // COMMON - END
       java.security.cert.X509Certificate[] certs=new java.security.cert.X509Certificate[1];
       CertificateFactory factory=CertificateFactory.getInstance("X.509");          
       certs[0]=(X509Certificate)factory.generateCertificate(new ByteArrayInputStream(correspondingCertificate.getValue().getByteArrayValue()));
       sap.setSignDate(new GregorianCalendar());
       sap.setCrypto(null, certs, null, null);
       sap.setReason("This is the reason");
       sap.setLocation("This is the Location");
       sap.setContact("This is the Contact");
       sap.setAcro6Layers(true);
       PdfSignature dic = new PdfSignature(PdfName.ADOBE_PPKLITE, PdfName.ADBE_PKCS7_SHA1);
       dic.setDate(new PdfDate(sap.getSignDate()));
       dic.setName(PdfPKCS7.getSubjectFields((X509Certificate)certs[0]).getField("CN"));
       sap.setCryptoDictionary(dic);
       int csize = 4000;
       HashMap exc = new HashMap();
       exc.put(PdfName.CONTENTS, new Integer(csize * 2 + 2));
       sap.preClose(exc);
       MessageDigest md = MessageDigest.getInstance("SHA1");
       InputStream s = sap.getRangeStream();
       int read = 0;
       byte[] buff = new byte[8192];
       while ((read = s.read(buff, 0, 8192)) > 0)
            md.update(buff, 0, read);
       byte[] signature=session.sign(buff);
       CMSSignedDataGenerator generator = new CMSSignedDataGenerator();
       ArrayList list = new ArrayList();
       for (int i = 0; i < certs.length; i++)
            list.add(certs);
       CertStore chainStore = CertStore.getInstance("Collection", new CollectionCertStoreParameters(list), provider);
       generator.addCertificatesAndCRLs(chainStore);
       CMSProcessable content = new CMSProcessableByteArray(md.digest());
       CMSSignedData signedData = generator.generate(CMSSignedDataGenerator.ENCRYPTION_RSA, content, true, provider);
       byte[] pk = signedData.getEncoded();
       byte[] outc = new byte[csize];
       PdfDictionary dic2 = new PdfDictionary();
       System.arraycopy(pk, 0, outc, 0, pk.length);
       dic2.put(PdfName.CONTENTS, new PdfString(outc).setHexWriting(true));
       sap.close(dic2);
       File newOne = new File("C:\\signed.pdf");
       FileOutputStream fos = new FileOutputStream(newOne);
       fos.write(baos.toByteArray());
       fos.close();
  I figured this is the right approach, but I need a way to generate the CMSSignedData instance, which can't be done using addSigner (the only documented way I found), since the private key is not extractable from a smart card...
  Then I decided to give up and try with a detached signature:
       // COMMON - START
       // Same as above
       // COMMON - END
       sap.setSignDate(new GregorianCalendar());
       java.security.cert.X509Certificate[] certs=new java.security.cert.X509Certificate[1];
       CertificateFactory factory=CertificateFactory.getInstance("X.509");          
       certs[0]=(X509Certificate)factory.generateCertificate(new ByteArrayInputStream(correspondingCertificate.getValue().getByteArrayValue()));
       sap.setCrypto(null, certs, null, PdfSignatureAppearance.SELF_SIGNED);
       sap.setSignDate(java.util.Calendar.getInstance());
       sap.setExternalDigest (new byte[8192], new byte[20], "RSA");
       sap.preClose();
       MessageDigest messageDigest = MessageDigest.getInstance ("SHA1");
       byte buff[] = new byte[8192];
       int n;
       InputStream inp = sap.getRangeStream ();
       while ((n = inp.read (buff)) > 0)
            messageDigest.update (buff, 0, n);
       byte hash[] = messageDigest.digest();
       byte[] signature=session.sign(hash);
       PdfSigGenericPKCS sg = sap.getSigStandard ();
       PdfLiteral slit = (PdfLiteral)sg.get (PdfName.CONTENTS);
       byte[] outc = new byte[(slit.getPosLength () - 2) / 2];
       PdfPKCS7 sig = sg.getSigner ();
       sig.setExternalDigest (session.sign(hash), hash, "RSA");
       PdfDictionary dic = new PdfDictionary ();
       byte[] ssig = sig.getEncodedPKCS7();
       System.arraycopy (ssig, 0, outc, 0, ssig.length);
       dic.put (PdfName.CONTENTS, new PdfString (outc).setHexWriting(true));
       sap.close (dic);
       File newOne = new File("C:\\signed.pdf");
       FileOutputStream fos = new FileOutputStream(newOne);
       fos.write(baos.toByteArray());
       fos.close();
  I'm still stuck to the signature process, can anyone please tell me what I'm doing wrong and help me (snippets would be deeply appreciated), maybe even changing approach in order to be able to add a digital timestamp?
  Thank you very much in advance!
  PS: I had also tried to use the SunPKCS11 provider to access the smart card, I gave up for similar problems, but if someone has suggestions using it, they're welcome! :D

• Ability to sign emails with certificates

  Hi all,
  I was just wondering if anyone had been able to setup their email on the iphone (I am using a mobile me account which syncs - I don't know the terminology) with digital signatures.
  I have setup my macbook that, when I compose an email, I can sign it with a free certificate I got from Comodo.
  I was wondering if there was a way of setting up the iphone so that I can also sign the messages I compose when I am about?
  I had a look at the iphone configuration utility (briefly) but got scared that I might change some other setting and break my phone (everything else is working so nicely).
  Is there any guides as to how set this up (am happy to look at the iphone utility if I could get all the current settings I have loaded onto it and then just change the required changes). I don't know if this is even allowed in the device...
  Any information would be helpful
  Cheers
  AusQBall

  Hi Sean,
  Thanks for replying but I am not sure that the application does quite what I am after...
  I am not trying to add an image with my signature on it but rather add a cryptographic signature which allows the recipient to know that it came from me. My knowledge on this topic is a little sketchy but I think that, for it to work, a hash of the entire message would need to be calculated and then encrypted with a private key found in my signature certificate (which only I have). The recipient can then check that the message has not been altered using the public key (provided in the email and signed by a certificate authority) to confirm that the hashes match.
  Please reply if I have misunderstood something with the application.
  Also thank you for looking into this for me. Any help is appreciated.
  Cheers
  AusQBall

• After last updating for OS 10.7.2 problems with digital certificate

  Hi everybody,
  Im having problems with lion after last updating yesterday... The digital certificates dont more work!!! In time: the same certificates still work in to snow leopard...
  I exported from snow leopard and imported on lion, but nothing.
  Until the keychain GUI aborted after that import... Just surfing on HTTPS page with that certificate and safari aborted too.
  Some ideia? i id send reports to Apple... but I dont have hope to answer.
  To test with version 10.7.2, please access https://www.caixa.gov.br
  Thanks
  Roberto Malheiro

  Assuming that the HP software is up-to-date, but still not working, have you tried Image Capture in the Applications folder. Does that work?

• Signing with Code Certificate from COMODO ?

  Hi,
  does anyone have some experience with a Code Signing Certificate from COMODO ?
  I exported the certificate from Chrome or IE and tried the signing for a ja file,
  but get:
  jar signed.
  Warning:
  The signer's certificate chain is not validated.
  Can anyone help me ?
  Many thanks.

  According to tzengs suggestion I tried to export the certificate again from firefox using "backup all" instead of "backup" with no effect.
  One thing which I am still not sure of:
  Can my client give me a p12 certificate which I can use as it is to sign my application using the provided password or do I have to process this certificate first?
  Depending on the answer to this question I need to take different action:
  YES: I need to tell my client to export the certificate in a different manner in order to "create the complete chain"
  NO: The certificate from my client is fine but I still need to figure out how to change the certificate so that I don't get the error.
  Thanks for your help.