Hi all, I have been looking around in this newgroup and several of the JSS articles and such with not much help Here is what I am trying to do. For our application, we issue certificates to users which they can later use to sign some data. In IE, this is what we have, the Microsoft xenroll object is used to request, download and install certificates into the Certificate store associated with the user. After this, there is an ActiveX control which iterates through the users certificate store, locate the appropriate certificate and use the private key associated with it to sign the hash of the data. I am struggling with how to do this with Netscape. From all the reading and research that I have done, here is what I understand. JSS is able to access the Netscape certificate store. We can find the key the private key which is associated with it and use this to sign the data. Here are my questions. If you could please tell me how to do this rather than point me to documents which says use crypto.jss.pkcs7 etc. I am looking for howtos and examples
1) WHat is the simplest way to install JSS on the clients side? Please keep in mind we have to do this for our external clients who are using a browser and this process has to be real simple 2) I understand that I can write a Java Applet to access the Netscape certificate store. Is this correct and if so please provide code snippets how to do this. 3) After I get access to the certstore, how can I look for the particular certificate that I am interested in and how can I find the private key associated with it? 4) Once I have this, how do I sign it? I understand that the signed date would be a byte array. I understand that for storage purposes, I can convert this into a PKCS package together with the certificate used for signing. How do I do this? I am sure somone has gone through this before and if so, please help me. I have been struggling with this for a while. Thanks Vinil
