Razred CertificateRequestExtensions

Zagotavlja razširitvene metode za CertificateRequest s PQ-podporo.

Definicija

namespace WvdS.System.Security.Cryptography.X509Certificates
 
public static class CertificateRequestExtensions

Metode

Ime	Opis
CreateSelfSigned(DateTimeOffset, DateTimeOffset, CryptoMode?)	Ustvari samopodpisan certifikat z opcijskim PQ-podpisom
Create(X509Certificate2, DateTimeOffset, DateTimeOffset, Byte[], CryptoMode?)	Ustvari CA-podpisan certifikat z opcijskim PQ-podpisom

Opombe

Ta razširitveni razred razširja System.Security.Cryptography.X509Certificates.CertificateRequest¹⁾.

Drop-In obnašanje

Razširitvene metode imajo enako signaturo kot originalne metode plus opcijski CryptoMode-parameter:

// Original .NET
X509Certificate2 CreateSelfSigned(DateTimeOffset notBefore, DateTimeOffset notAfter)
 
// Razširitev (Drop-In)
X509Certificate2 CreateSelfSigned(DateTimeOffset notBefore, DateTimeOffset notAfter, CryptoMode? mode = null)

Ko je using-namespace vključen, se samodejno uporablja razširitvena metoda.

Primer

using WvdS.System.Security.Cryptography;
using WvdS.System.Security.Cryptography.X509Certificates;
 
CryptoConfig.DefaultMode = CryptoMode.Hybrid;
 
using var rsa = RSA.Create(2048);
var request = new CertificateRequest(
    "CN=Strežnik, O=Org, C=SI",
    rsa,
    HashAlgorithmName.SHA256,
    RSASignaturePadding.Pkcs1);
 
request.CertificateExtensions.Add(
    new X509BasicConstraintsExtension(false, false, 0, true));
 
// Hibridni certifikat: RSA + ML-DSA
var cert = request.CreateSelfSigned(
    DateTimeOffset.Now,
    DateTimeOffset.Now.AddYears(1));

Glej tudi

razred, extension, static

Wolfgang van der Stille @ EMSR DATA d.o.o. - Post-Quantum Cryptography Professional

¹⁾

Microsoft Docs: https://learn.microsoft.com/dotnet/api/system.security.cryptography.x509certificates.certificaterequest