https://www.wvds.it/wiki/ 2026-05-22T18:00:57+00:00 https://www.wvds.it/wiki/ https://www.wvds.it/wiki/lib/exe/fetch.php?media=wiki:dokuwiki.svg text/html 2026-01-30T09:06:28+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=it:int:pqcrypt:szenarien:kurzreferenz:csr&rev=1769763988&do=diff Creare CSR Esempi compatti per Certificate Signing Request. → Dettagli: Scenari CSR ---------- Server-CSR (TLS) using var ecdsa = ECDsa.Create(ECCurve.NamedCurves.nistP384); var dn = new X500DistinguishedNameBuilder(); dn.AddCommonName("api.example.com"); dn.AddOrganizationName("Example Corp"); var csr = new CertificateRequest(dn.Build(), ecdsa, HashAlgorithmName.SHA384); // SAN var sanBuilder = new SubjectAlternativeNameBuilder(); sanBuilder.AddDnsName("api.example.com"); sanBuilder.Add… text/html 2026-01-30T08:59:06+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=it:int:pqcrypt:szenarien:kurzreferenz:import-export&rev=1769763546&do=diff Import/Export Esempi compatti per Import/Export. → Dettagli: Scenari Import/Export ---------- Export PEM var cert = new X509Certificate2("certificate.pfx", "password"); // Certificato come PEM string certPem = cert.ExportCertificatePem(); File.WriteAllText("certificate.pem", certPem); // Chiave privata come PEM (cifrata) using var key = cert.GetECDsaPrivateKey(); string keyPem = key.ExportEncryptedPkcs8PrivateKeyPem( "password"u8, new PbeParameters( PbeEncryptionAlgorithm.Aes2… text/html 2026-01-30T08:59:04+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=it:int:pqcrypt:szenarien:kurzreferenz:pki-aufbau&rev=1769763544&do=diff Costruire infrastruttura PKI Guida compatta per costruire una PKI PQ-capable. → Dettagli: Scenari PKI ---------- Gerarchia Root-CA (Offline, ML-DSA-87) └── Intermediate-CA (Online, ML-DSA-65) ├── Certificati Server (Hybrid: ECDSA + ML-DSA) ├── Certificati Client (ML-DSA-65) └── Certificati Utente (ML-DSA-65) text/html 2026-01-30T08:59:02+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=it:int:pqcrypt:szenarien:kurzreferenz:schluessel&rev=1769763542&do=diff Gestione chiavi Esempi compatti per la gestione chiavi. → Dettagli: Scenari chiavi ---------- Generare chiavi // ML-DSA (Firme) using var mlDsa65 = MlDsaSigner.Create(MlDsaParameterSet.MlDsa65); using var mlDsa87 = MlDsaSigner.Create(MlDsaParameterSet.MlDsa87); // ML-KEM (Key Exchange) using var mlKem768 = MlKem.Create(MlKemParameterSet.MlKem768); using var mlKem1024 = MlKem.Create(MlKemParameterSet.MlKem1024); // Classico (Hybrid) using var ecdsa = ECDsa.Create(ECCurve.NamedCurves.nistP3… text/html 2026-01-30T08:58:58+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=it:int:pqcrypt:szenarien:kurzreferenz:signaturen&rev=1769763538&do=diff Firme digitali Esempi compatti per le firme. → Dettagli: Scenari firma ---------- Firma ibrida RSA using var rsa = RSA.Create(4096); byte[] data = Encoding.UTF8.GetBytes("Dati da firmare"); // Firma ibrida (RSA + ML-DSA) byte[] signature = rsa.SignData(data, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1, CryptoMode.Hybrid); // Verificare bool valid = rsa.VerifyData(data, signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1, CryptoMode.Hybrid); text/html 2026-01-30T08:31:12+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=it:int:pqcrypt:szenarien:kurzreferenz:start&rev=1769761872&do=diff Riferimento rapido Esempi di codice compatti per iniziare rapidamente. Per spiegazioni dettagliate vedere gli scenari collegati. ---------- PKI e certificati Esempio Descrizione Dettagli Infrastruttura PKI Root-CA, Intermediate-CA, gerarchia → Scenari PKI Creare CSR Server, Client, Code-Signing text/html 2026-01-30T08:58:56+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=it:int:pqcrypt:szenarien:kurzreferenz:validierung&rev=1769763536&do=diff Validazione Esempi compatti per la validazione dei certificati. → Dettagli: Scenari validazione ---------- Certificato singolo var cert = new X509Certificate2("certificate.crt"); // Validita temporale bool timeValid = DateTime.UtcNow >= cert.NotBefore && DateTime.UtcNow <= cert.NotAfter; // Verificare firma PQ bool hasPq = cert.HasPqSignature(); if (hasPq) { bool pqValid = cert.VerifyPqSignature(); } text/html 2026-01-30T08:58:54+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=it:int:pqcrypt:szenarien:kurzreferenz:verschluesselung&rev=1769763534&do=diff Cifratura Esempi compatti per la cifratura. → Dettagli: Scenari cifratura ---------- ML-KEM Key Encapsulation // Destinatario: Generare coppia di chiavi using var mlKem = MlKem.Create(MlKemParameterSet.MlKem768); byte[] publicKey = mlKem.ExportPublicKey(); // Mittente: Incapsulare Shared Secret var encap = MlKem.Encapsulate(publicKey); byte[] ciphertext = encap.Ciphertext; byte[] senderSecret = encap.SharedSecret; // Destinatario: Decapsulare Shared Secret byte[] receiverSecret = mlKem.De… text/html 2026-01-30T08:58:52+00:00 Anonymous (anonymous@undisclosed.example.com) https://www.wvds.it/wiki/doku.php?id=it:int:pqcrypt:szenarien:kurzreferenz:zertifikat-verwaltung&rev=1769763532&do=diff Gestione certificati Esempi compatti per la gestione dei certificati. → Dettagli: Scenari gestione ---------- Rinnovare certificato (stessa chiave) var caCert = new X509Certificate2("intermediate-ca.pfx", "password"); var oldCert = new X509Certificate2("server.pfx", "password"); var privateKey = oldCert.GetECDsaPrivateKey(); var request = new CertificateRequest( oldCert.SubjectName, (ECDsa)privateKey, HashAlgorithmName.SHA384); // Riprendere estensioni (tranne SKI) foreach (var ext i…