none
CertSequences Minidriver Certification RRS feed

  • Question

  • Hi All,

    When I run the CertSequences test using CMCK.exe with SSL_RSA subtest, there is failure. The test tries to sign data with SSL3 SHA algo and sends 36 bytes hash to SC minidriver. However, the minidriver/card supports only SHA1 algo for signing. If the mini driver returns "Unsupported Feature" the test fails.

    Is there a way I can make this test pass by returning a status value as the card/mini driver does not support this algorithm.

    Thanks,

    Madhukar

    Wednesday, November 6, 2013 11:41 AM

All replies

  • There is no way to pass this test if card/minidriver does not support this algorithm.

    But if the card/minidriver does not support key type AT_KEYEXCHANGE, you can remove "AT_KEYEXCHANGE" from the KeyTypes section in cmck config file (cmck_config.xml). Then this test will be ignored.

       <CardSupports>
    ...
            <KeyTypes>AT_SIGNATURE AT_KEYEXCHANGE</KeyTypes>

    ...

     </CardSupports>


    Monday, November 11, 2013 10:07 PM
  • Minidriver/Card supports AT_KEYEXCHANGE but does not support certain features like supporting alogo SSL3 SHA, RSA decrypt, etc. In this case, these tests always fails.

    I believe the only option is to remove AT_KEYEXCHANGE from config file as you said.

    Thanks,

    Madhukar


    Tuesday, November 12, 2013 4:32 AM