I have exported rootCert created in the example to root.cer
And I have installed into windows keystore and thunderbird keystore but is not validating or showing the signers certificate in the signed email.
I can see the signed data in thunderbird.
I have another cuestion:
In the method
gen.addSigner(key, cert, SMIMESignedGenerator.DIGEST_SHA256, new AttributeTable(signedAttrs), null);
there are a private key and cert
key has to be extracted from cert, isn't it?
endEntitykey has to be extracted from endEntitykey.
The parameters of the method addSigner
key - key to use to generate the signature
cert - the public key certificate associated with the signer's key.
digestOID - object ID of the digest algorithm to use.
signedAttr - signed attributes to be included in the signature.
unsignedAttr - unsigned attribitues to be included.
I'm confused, when method addSigner() is callled in the example of the book, "key" is private key from END_ENTITY_ALIAS and cert is the certificate from INTERMEDIATE_ALIAS.
Should It use key (private key from END_ENTITY_ALIAS and cert from END_ENTITY_ALIAS the public key certificate associated with the signer's key?
Last edited by BKD; June 21st, 2010 at 04:57 AM..