Yurij_Jilov
asked on
verifying sign using S/MIME signed-data
Hi,all! I need help anybody familiar with S/MIME format. In my current project I must verify e-mail message sign.My signed message look like:
..........................
------------3B1811451B00BA
Content-Type: text/plain; charset=Windows-1251
Content-Transfer-Encoding:
test
..........................
Sign is verified by MS CryptoAPI function CryptVerifyDetachedMessage
My question is what is message part signed, any words, what signed message boundaries, is signed message "test",
"
test
", or
"
------------3B1811451B00BA
Content-Type: text/plain; charset=Windows-1251
Content-Transfer-Encoding:
test
" ? Any help appreciate.
..........................
------------3B1811451B00BA
Content-Type: text/plain; charset=Windows-1251
Content-Transfer-Encoding:
test
..........................
Sign is verified by MS CryptoAPI function CryptVerifyDetachedMessage
My question is what is message part signed, any words, what signed message boundaries, is signed message "test",
"
test
", or
"
------------3B1811451B00BA
Content-Type: text/plain; charset=Windows-1251
Content-Transfer-Encoding:
test
" ? Any help appreciate.
ASKER
OK! My problem is not to extract MIME content from document ( i am using NSF_HOOKS to intercept notes client actions to open/update document). I need know what message part was signed by sending mail agent to verify sign. I have whole MIME content and attached smime.p7s file (sign+certificate), on Windows i can use CryptoAPI to verify sign, in particular CryptVerifyDetachedMessage
That's a tough one. I don't know how a Domino-stored S/MIME message woudl look different than i any other system. I guess you could send the signed message to an INternet account and a Notes account, and see if there is any difference between your extracted MIEM and the Internet mailbox message source. If there is no difference, tnen you are oding something wrong. If there is a difference, and you can see how to reconcile that diofference, you will have solved your problem.
ASKER
Problem was solved.In my case was signed this block:
//------------------------
Content-Type: text/plain; charset=Windows-1251
Content-Transfer-Encoding:
test
//------------------------
if must to sign multyple/mixed type block then signed block look like:
//------------------------
Content-Type: multyple/mixed;boundary = "xyz"
...........block content...................
----xyz--
//------------------------
How I can close question?
//------------------------
Content-Type: text/plain; charset=Windows-1251
Content-Transfer-Encoding:
test
//------------------------
if must to sign multyple/mixed type block then signed block look like:
//------------------------
Content-Type: multyple/mixed;boundary = "xyz"
...........block content...................
----xyz--
//------------------------
How I can close question?
I am having problems in verifying the signed mail, I am not what parameter need to send to the method 'CryptVerifyDetachedMessag
I have one more doubt, if there is an attachment which content we need to send?
do we need to send both message and attachment content as the parameter?
do we need to encode it?
From the mime content, I have smime.p7s file, and I am sending just message with out mime content and I am getting the error 'Hash value not correct'
please explain it.
Thank you.
I have one more doubt, if there is an attachment which content we need to send?
do we need to send both message and attachment content as the parameter?
do we need to encode it?
From the mime content, I have smime.p7s file, and I am sending just message with out mime content and I am getting the error 'Hash value not correct'
please explain it.
Thank you.
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.
I will leave the following recommendation for this question in the Cleanup topic area:
PAQ with points refunded
Any objections should be posted here in the next 4 days. After that time, the question will be closed.
marilyng
EE Cleanup Volunteer
I will leave the following recommendation for this question in the Cleanup topic area:
PAQ with points refunded
Any objections should be posted here in the next 4 days. After that time, the question will be closed.
marilyng
EE Cleanup Volunteer
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You would probably want to extra the full message content as a single on-disk file, and run the MS API against it. You will need to use the DEFINE statement in LotusScript (Definitions) section to create a header for calling the MS functions, and you will have to fiddle with getting the parameters to match variables that you can pass and retrieve properly.
The way to extract the MIME is to use either Notes API calls in a similar way to calling the MS API. Or, you can use the Notes LotusScript API to extract MIME sections as text variables, and write them to disk. How you do that will depend on whether your code runs in R6 or R5.