PKCS7 signatures

Jun 20 2006 3:17 PM
Hello folks.

For those who works with Digital Signature in PKCS7 format.

.NET framework comes with the new class SignedCms, wich allows the generation of PKCS7 signatures. But I faced a challenge: to insert a CRL into the signed package, so the receptor can validate the signature with a past valid certificate.

I didn't find a way to do that. Even using the old CAPICOM I think it's impossible to create a PKCS7 with CRL attached. The same is valid for TimeStamp information, I cannot insert it in the package.

Dos anybody knows some way to do that?

Thanks!

Bruno.