X509Certificate2.Verify メソッド
アセンブリ: System (system.dll 内)
構文
Dim instance As X509Certificate2 Dim returnValue As Boolean returnValue = instance.Verify
検証が成功した場合は true。検証が失敗した場合は false。
解説
このメソッドは、証明書に対して簡単なチェーンを作成し、そのチェーンに基本ポリシーを適用します。エラーの詳細が必要な場合は、X509Chain オブジェクトを使用して、証明書を直接検証します。
CryptoConfig クラスを使用して、既定のチェーン エンジンをオーバーライドできます。Microsoft Windows Server 2003 では、既定のエンジンが RFC3280 の「Certificate and Certificate Revocation List (CRL) Profile」で説明されている仕様に準拠しています。
現在のユーザーの証明書ストアを開いて、アクティブな証明書だけを選択し、ユーザーが 1 つ以上の証明書を選択できるようにするコード例を次に示します。この例では、次に、証明書情報をコンソールに書き込みます。
using System; using System.Security.Cryptography; using System.Security.Permissions; using System.IO; using System.Security.Cryptography.X509Certificates; class CertSelect { static void Main() { try { X509Store store = new X509Store("MY",StoreLocation.CurrentUser); store.Open(OpenFlags.ReadOnly | OpenFlags.OpenExistingOnly); X509Certificate2Collection collection = (X509Certificate2Collection)store.Certificates; X509Certificate2Collection fcollection = (X509Certificate2Collection)collection.Find(X509FindType.FindByTimeValid ,DateTime.Now,false); X509Certificate2Collection scollection = X509Certificate2UI.SelectFromCollection(fcollection, "Test Certificate Select","Select a certificate from the following list to get information on that certificate",X509SelectionFlag.MultiSelection); Console.WriteLine("Number of certificates: {0}{1}",scollection.Count ,Environment.NewLine); foreach (X509Certificate2 x509 in scollection) { byte[] rawdata = x509.RawData; Console.WriteLine("Content Type: {0}{1}",X509Certificate2.GetCertContentType(rawdata) ,Environment.NewLine); Console.WriteLine("Friendly Name: {0}{1}",x509.FriendlyName ,Environment.NewLine); Console.WriteLine("Certificate Verified?: {0}{1}",x509.Verify() ,Environment.NewLine); Console.WriteLine("Simple Name: {0}{1}",x509.GetNameInfo(X509NameType.SimpleName ,true),Environment.NewLine); Console.WriteLine("Signature Algorithm: {0}{1}",x509.SignatureAlgorithm.FriendlyName ,Environment.NewLine); Console.WriteLine("Private Key: {0}{1}",x509.PrivateKey.ToXmlString(false) ,Environment.NewLine); Console.WriteLine("Public Key: {0}{1}",x509.PublicKey.Key.ToXmlString(false) ,Environment.NewLine); Console.WriteLine("Certificate Archived?: {0}{1}",x509.Archived ,Environment.NewLine); Console.WriteLine("Length of Raw Data: {0}{1}",x509.RawData.Length ,Environment.NewLine); X509Certificate2UI.DisplayCertificate(x509); x509.Reset(); } store.Close(); } catch (CryptographicException) { Console.WriteLine("Information could not be written out for this certificate."); } } }
#using <System.dll> #using <System.Security.dll> using namespace System; using namespace System::Security::Cryptography; using namespace System::Security::Permissions; using namespace System::IO; using namespace System::Security::Cryptography::X509Certificates; int main() { try { X509Store ^ store = gcnew X509Store( "MY",StoreLocation::CurrentUser ); store->Open( static_cast<OpenFlags>(OpenFlags::ReadOnly | OpenFlags::OpenExistingOnly) ); X509Certificate2Collection ^ collection = dynamic_cast<X509Certificate2Collection^>(store->Certificates); X509Certificate2Collection ^ fcollection = dynamic_cast<X509Certificate2Collection^>(collection->Find( X509FindType::FindByTimeValid, DateTime::Now, false )); X509Certificate2Collection ^ scollection = X509Certificate2UI::SelectFromCollection(fcollection, "Test Certificate Select","Select a certificate from the following list to get information on that certificate",X509SelectionFlag::MultiSelection); Console::WriteLine( "Number of certificates: {0}{1}", scollection->Count, Environment::NewLine ); System::Collections::IEnumerator^ myEnum = scollection->GetEnumerator(); while ( myEnum->MoveNext() ) { X509Certificate2 ^ x509 = safe_cast<X509Certificate2 ^>(myEnum->Current); array<Byte>^rawdata = x509->RawData; Console::WriteLine( "Content Type: {0}{1}", X509Certificate2::GetCertContentType( rawdata ), Environment::NewLine ); Console::WriteLine( "Friendly Name: {0}{1}", x509->FriendlyName, Environment::NewLine ); Console::WriteLine( "Certificate Verified?: {0}{1}", x509->Verify(), Environment::NewLine ); Console::WriteLine( "Simple Name: {0}{1}", x509->GetNameInfo( X509NameType::SimpleName, true ), Environment::NewLine ); Console::WriteLine( "Signature Algorithm: {0}{1}", x509->SignatureAlgorithm->FriendlyName, Environment::NewLine ); Console::WriteLine( "Private Key: {0}{1}", x509->PrivateKey->ToXmlString( false ), Environment::NewLine ); Console::WriteLine( "Public Key: {0}{1}", x509->PublicKey->Key->ToXmlString( false ), Environment::NewLine ); Console::WriteLine( "Certificate Archived?: {0}{1}", x509->Archived, Environment::NewLine ); Console::WriteLine( "Length of Raw Data: {0}{1}", x509->RawData->Length, Environment::NewLine ); x509->Reset(); } store->Close(); } catch ( CryptographicException^ ) { Console::WriteLine( "Information could not be written out for this certificate." ); } }
Windows 98, Windows 2000 SP4, Windows Millennium Edition, Windows Server 2003, Windows XP Media Center Edition, Windows XP Professional x64 Edition, Windows XP SP2, Windows XP Starter Edition
開発プラットフォームの中には、.NET Framework によってサポートされていないバージョンがあります。サポートされているバージョンについては、「システム要件」を参照してください。
参照
- X509Certificate2.Verify メソッドのページへのリンク