How to use thumbprint for security?

Question

I am using RSACryptoServiceProvider for security.

I built the code using a self signed certificate for testing purposes. not user has provided us with the actual thumbprint. I was expecting to get a certificate instead ? how do i use the Thumbprint ?

here is the code:

/// Builds Authorization in using self signed certificate
/// </summary>
/// <returns></returns>
private string BuildAuthorization()
{
    X509Certificate2 cert = GetCertificate();

    RSACryptoServiceProvider provideEncryptor = (RSACryptoServiceProvider)cert.PublicKey.Key;

    string authorizaionValue = string.Format("{0}:{1}:{2}", _userName,_password, _currentTime);

    byte[] encryptedData = provideEncryptor.Encrypt(Encoding.UTF8.GetBytes(authorizaionValue), false);

    string encryptedString = Convert.ToBase64String(encryptedData);

    return encryptedString;

}


/// <summary>
/// creates a self signed certificate 
/// </summary>
/// <returns></returns>
private X509Certificate2 GetCertificate()
{
    X509Store store = new X509Store(StoreLocation.CurrentUser);
    store.Open(OpenFlags.ReadOnly);
    X509Certificate2 cert = null;
    string certName = ConfigurationManager.AppSettings["CertName"];

    foreach (var c in store.Certificates)
    {
        if (c.Subject.Equals(certName, StringComparison.OrdinalIgnoreCase))
        {
            cert = c;
            break;
        }
    }


    store.Close();

    return cert;

}

the thumbprint provided is something like :

87aa7f6********************9b2d95093a6

I have found a solution please check http://stackoverflow.com/questions/11115511/how-to-find-certificate-by-its-thumbprint-in-c-sharp — Nazmul, May 19 '15 at 18:02

score 2 · Accepted Answer · edited May 23 '17 at 10:26

2

A thumbprint is just an identifier of a certificate, usually an MD5 or SHA1 hash of the certificate.

You cannot really do anything with the thumbprint itself, think of it as an ID of a record in a database. You will need to sure, but what I suspect the intention is they are giving your the thumbprint of a certificate that is in the certificate store. This StackOverflow question provides information on how to load a certificate from the certificate store by thumbprint.

edited May 23 '17 at 10:26

Community

1
1

answered May 19 '15 at 18:03

vcsjones

138,677
31
291
286

here is the thing, the code to search based on thumbprint is fine as long as the certificate in on ur local. I am posting on an outside URL? how can i search their certificates? it is throwing me off on `X509Store certStore = new X509Store(StoreName.My, StoreLocation.CurrentUser);` – grace May 19 '15 at 19:20

How to use thumbprint for security?

1 Answers1