https://www.wvds.it/wiki/ 2026-05-22T17:19:45+00:00 https://www.wvds.it/wiki/ https://www.wvds.it/wiki/lib/exe/fetch.php?media=wiki:dokuwiki.svg text/html 2026-01-29T23:38:24+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=en:int:pqcrypt:szenarien:kurzreferenz:csr&rev=1769729904&do=diff Create CSR Compact examples for Certificate Signing Requests. -> Details: CSR Scenarios ---------- Server CSR (TLS) using var ecdsa = ECDsa.Create(ECCurve.NamedCurves.nistP384); var dn = new X500DistinguishedNameBuilder(); dn.AddCommonName("api.example.com"); dn.AddOrganizationName("Example Corp"); var csr = new CertificateRequest(dn.Build(), ecdsa, HashAlgorithmName.SHA384); // SANs var sanBuilder = new SubjectAlternativeNameBuilder(); sanBuilder.AddDnsName("api.example.com"); sanBuilde… text/html 2026-01-29T23:39:24+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=en:int:pqcrypt:szenarien:kurzreferenz:import-export&rev=1769729964&do=diff Import/Export Compact examples for import/export. -> Details: Import/Export Scenarios ---------- PEM Export var cert = new X509Certificate2("certificate.pfx", "password"); // Certificate as PEM string certPem = cert.ExportCertificatePem(); File.WriteAllText("certificate.pem", certPem); // Private key as PEM (encrypted) using var key = cert.GetECDsaPrivateKey(); string keyPem = key.ExportEncryptedPkcs8PrivateKeyPem( "password"u8, new PbeParameters( PbeEncryptionAlgorithm.Aes256… text/html 2026-01-29T23:38:12+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=en:int:pqcrypt:szenarien:kurzreferenz:pki-aufbau&rev=1769729892&do=diff Building PKI Infrastructure Compact guide for building a PQ-capable PKI. -> Details: PKI Scenarios ---------- Hierarchy Root CA (Offline, ML-DSA-87) +-- Intermediate CA (Online, ML-DSA-65) +-- Server Certificates (Hybrid: ECDSA + ML-DSA) +-- Client Certificates (ML-DSA-65) +-- User Certificates (ML-DSA-65) text/html 2026-01-29T23:39:14+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=en:int:pqcrypt:szenarien:kurzreferenz:schluessel&rev=1769729954&do=diff Key Management Compact examples for key management. -> Details: Key Scenarios ---------- Generate Keys // ML-DSA (Signatures) using var mlDsa65 = MlDsaSigner.Create(MlDsaParameterSet.MlDsa65); using var mlDsa87 = MlDsaSigner.Create(MlDsaParameterSet.MlDsa87); // ML-KEM (Key Exchange) using var mlKem768 = MlKem.Create(MlKemParameterSet.MlKem768); using var mlKem1024 = MlKem.Create(MlKemParameterSet.MlKem1024); // Classical (Hybrid) using var ecdsa = ECDsa.Create(ECCurve.NamedCurves.nistP38… text/html 2026-01-29T23:38:46+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=en:int:pqcrypt:szenarien:kurzreferenz:signaturen&rev=1769729926&do=diff Digital Signatures Compact examples for signatures. -> Details: Signature Scenarios ---------- RSA Hybrid Signature using var rsa = RSA.Create(4096); byte[] data = Encoding.UTF8.GetBytes("Data to sign"); // Hybrid signature (RSA + ML-DSA) byte[] signature = rsa.SignData(data, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1, CryptoMode.Hybrid); // Verify bool valid = rsa.VerifyData(data, signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1, CryptoMode.Hybrid); text/html 2026-01-29T23:38:00+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=en:int:pqcrypt:szenarien:kurzreferenz:start&rev=1769729880&do=diff Quick Reference Compact code examples for quick start. For detailed explanations, see the linked scenarios. ---------- PKI & Certificates Example Description Details PKI Infrastructure Root CA, Intermediate CA, hierarchy -> PKI Scenarios Create CSR Server, client, code signing text/html 2026-01-29T23:38:36+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=en:int:pqcrypt:szenarien:kurzreferenz:validierung&rev=1769729916&do=diff Validation Compact examples for certificate validation. -> Details: Validation Scenarios ---------- Single Certificate var cert = new X509Certificate2("certificate.crt"); // Time validity bool timeValid = DateTime.UtcNow >= cert.NotBefore && DateTime.UtcNow <= cert.NotAfter; // Check PQ signature bool hasPq = cert.HasPqSignature(); if (hasPq) { bool pqValid = cert.VerifyPqSignature(); } text/html 2026-01-29T23:39:00+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=en:int:pqcrypt:szenarien:kurzreferenz:verschluesselung&rev=1769729940&do=diff Encryption Compact examples for encryption. -> Details: Encryption Scenarios ---------- ML-KEM Key Encapsulation // Receiver: Generate key pair using var mlKem = MlKem.Create(MlKemParameterSet.MlKem768); byte[] publicKey = mlKem.ExportPublicKey(); // Sender: Encapsulate shared secret var encap = MlKem.Encapsulate(publicKey); byte[] ciphertext = encap.Ciphertext; byte[] senderSecret = encap.SharedSecret; // Receiver: Decapsulate shared secret byte[] receiverSecret = mlKem.Decapsulate(ciphe… text/html 2026-01-29T23:39:38+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=en:int:pqcrypt:szenarien:kurzreferenz:zertifikat-verwaltung&rev=1769729978&do=diff Certificate Management Compact examples for certificate management. -> Details: Management Scenarios ---------- Renew Certificate (Same Key) var caCert = new X509Certificate2("intermediate-ca.pfx", "password"); var oldCert = new X509Certificate2("server.pfx", "password"); var privateKey = oldCert.GetECDsaPrivateKey(); var request = new CertificateRequest( oldCert.SubjectName, (ECDsa)privateKey, HashAlgorithmName.SHA384); // Copy extensions (except SKI) foreach (var ext in oldCert.Ext…