private void Addressed(IDataSealer sealer, IDataUnsealer unsealer)
{
String str = "This is a secret message from Alice for Bob";
//Get ETK
EncryptionToken receiver = new EncryptionToken(Utils.ReadFully(GetAbsoluteTestFilePath("bob/bobs_public_key.etk")));
Stream output = sealer.Seal(new MemoryStream(Encoding.UTF8.GetBytes(str)), receiver);
UnsealResult result = unsealer.Unseal(output);
Console.WriteLine(result.SecurityInformation.ToString());
output.Close();
MemoryStream stream = new MemoryStream();
Utils.Copy(result.UnsealedData, stream);
//Assert.IsInstanceOfType(result.UnsealedData, typeof(WindowsTempFileStream));
Assert.AreEqual(ValidationStatus.Valid, result.SecurityInformation.ValidationStatus);
Assert.AreEqual(ETEE::Status.TrustStatus.Unsure, result.SecurityInformation.TrustStatus);
Assert.IsTrue(result.IsNonRepudiatable);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.AuthenticationCertificate.Thumbprint);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.SigningCertificate.Thumbprint);
Assert.AreEqual(bob["825373489"].Thumbprint, result.SecurityInformation.Encryption.Subject.Certificate.Thumbprint);
Assert.AreEqual(str, Encoding.UTF8.GetString(stream.ToArray()));
Assert.IsNotNull(result.SecurityInformation.ToString());
}
private void NonAddressed(IDataSealer sealer, IDataUnsealer unsealer)
{
String str = "This is a secret message from Alice";
SecretKey key = new SecretKey("btSefztkXjZmlZyHQIumLA==", "aaUnRynIwd3GFQmhXfW+VQ==");
Stream output = sealer.Seal(new MemoryStream(Encoding.UTF8.GetBytes(str)), key);
UnsealResult result = unsealer.Unseal(output, key);
Console.WriteLine(result.SecurityInformation.ToString());
output.Close();
MemoryStream stream = new MemoryStream();
Utils.Copy(result.UnsealedData, stream);
//Assert.IsInstanceOfType(result.UnsealedData, typeof(WindowsTempFileStream));
Assert.AreEqual(ValidationStatus.Valid, result.SecurityInformation.ValidationStatus);
Assert.AreEqual(ETEE::Status.TrustStatus.Unsure, result.SecurityInformation.TrustStatus);
Assert.IsTrue(result.IsNonRepudiatable);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.AuthenticationCertificate.Thumbprint);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.SigningCertificate.Thumbprint);
Assert.IsNull(result.SecurityInformation.Encryption.Subject);
Assert.AreEqual(str, Encoding.UTF8.GetString(stream.ToArray()));
Assert.IsNotNull(result.SecurityInformation.ToString());
}
private void Unseal(Stream output)
{
IDataUnsealer unsealer = DataUnsealerFactory.Create(level, alice, bob);
UnsealResult result = unsealer.Unseal(output);
Console.WriteLine(result.SecurityInformation.ToString());
MemoryStream stream = new MemoryStream();
Utils.Copy(result.UnsealedData, stream);
result.UnsealedData.Close();
Assert.IsTrue((DateTime.UtcNow - result.SealedOn) < new TimeSpan(0, 1, 0));
Assert.IsNotNull(result.SignatureValue);
Assert.AreEqual(validationStatus, result.SecurityInformation.ValidationStatus);
Assert.AreEqual(trustStatus, result.SecurityInformation.TrustStatus);
Assert.IsNull(result.SecurityInformation.OuterSignature.Signer);
Assert.IsNotNull(result.SecurityInformation.OuterSignature.SignerId);
Assert.IsNull(result.SecurityInformation.InnerSignature.Signer);
Assert.IsNotNull(result.SecurityInformation.InnerSignature.SignerId);
//todo:encrypt for WebKey
Assert.AreEqual(bob["825373489"].Thumbprint, result.SecurityInformation.Encryption.Subject.Certificate.Thumbprint);
Assert.AreEqual(clearMessage, Encoding.UTF8.GetString(stream.ToArray()));
Assert.IsNotNull(result.SecurityInformation.ToString());
}
private void Mixed(IDataSealer sealer, IDataUnsealer unsealer)
{
String str = "This is a secret message from Alice to everybody";
SecretKey key = new SecretKey("btSefztkXjZmlZyHQIumLA==", "aaUnRynIwd3GFQmhXfW+VQ==");
EncryptionToken receiver1 = new EncryptionToken(Utils.ReadFully(GetAbsoluteTestFilePath("bob/bobs_public_key.etk")));
Stream output = sealer.Seal(new MemoryStream(Encoding.UTF8.GetBytes(str)), key, receiver1);
UnsealResult result = unsealer.Unseal(output, key);
Console.WriteLine(result.SecurityInformation.ToString());
MemoryStream stream = new MemoryStream();
Utils.Copy(result.UnsealedData, stream);
Assert.AreEqual(ValidationStatus.Valid, result.SecurityInformation.ValidationStatus);
Assert.AreEqual(ETEE::Status.TrustStatus.Unsure, result.SecurityInformation.TrustStatus);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.AuthenticationCertificate.Thumbprint);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.SigningCertificate.Thumbprint);
Assert.IsNull(result.SecurityInformation.Encryption.Subject);
Assert.AreEqual(str, Encoding.UTF8.GetString(stream.ToArray()));
Assert.IsNotNull(result.SecurityInformation.ToString());
output.Position = 0;
result = unsealer.Unseal(output);
Console.WriteLine(result.SecurityInformation.ToString());
stream = new MemoryStream();
Utils.Copy(result.UnsealedData, stream);
Assert.AreEqual(ValidationStatus.Valid, result.SecurityInformation.ValidationStatus);
Assert.AreEqual(ETEE::Status.TrustStatus.Unsure, result.SecurityInformation.TrustStatus);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.AuthenticationCertificate.Thumbprint);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.SigningCertificate.Thumbprint);
Assert.AreEqual(bob["825373489"].Thumbprint, result.SecurityInformation.Encryption.Subject.Certificate.Thumbprint);
Assert.AreEqual(str, Encoding.UTF8.GetString(stream.ToArray()));
Assert.IsNotNull(result.SecurityInformation.ToString());
}
private void Unseal(Stream output)
{
IDataUnsealer unsealer;
if (!level.HasValue || level.Value == Level.B_Level || !useTmaInsteadOfTsa)
{
unsealer = DataUnsealerFactory.Create(level, alice, bob);
}
else
{
unsealer = DataUnsealerFactory.CreateFromTimemarkAuthority(level.Value, new CurrentTimemarkProvider(), alice, bob);
}
UnsealResult result = unsealer.Unseal(output);
Console.WriteLine(result.SecurityInformation.ToString());
MemoryStream stream = new MemoryStream();
Utils.Copy(result.UnsealedData, stream);
result.UnsealedData.Close();
Assert.IsTrue((DateTime.UtcNow - result.SealedOn) < new TimeSpan(0, 1, 0));
Assert.IsNotNull(result.SignatureValue);
Assert.AreEqual(validationStatus, result.SecurityInformation.ValidationStatus);
Assert.AreEqual(trustStatus, result.SecurityInformation.TrustStatus);
Assert.AreEqual(subject, result.AuthenticationCertificate.Subject);
if (nonRepudiatable)
{
Assert.AreEqual(subject2, result.SigningCertificate.Subject);
}
else
{
Assert.AreEqual(subject, result.SigningCertificate.Subject);
}
Assert.AreEqual(bob["825373489"].Thumbprint, result.SecurityInformation.Encryption.Subject.Certificate.Thumbprint);
Assert.AreEqual(clearMessage, Encoding.UTF8.GetString(stream.ToArray()));
Assert.IsNotNull(result.SecurityInformation.ToString());
}
public void MultiAddressed()
{
String str = "This is a secret message from Alice for Bob and Herself";
//Get ETK
EncryptionToken receiver1 = new EncryptionToken(Utils.ReadFully(GetAbsoluteTestFilePath("bob/bobs_public_key.etk")));
EncryptionToken receiver2 = new EncryptionToken(Utils.ReadFully(GetAbsoluteTestFilePath("alice/alices_public_key.etk")));
IDataSealer sealer = EhDataSealerFactory.Create(Level.B_Level, alice);
Stream output = sealer.Seal(new MemoryStream(Encoding.UTF8.GetBytes(str)), receiver1, receiver2);
IDataUnsealer unsealer = DataUnsealerFactory.Create(null, alice, bob);
UnsealResult result = unsealer.Unseal(output);
Console.WriteLine(result.SecurityInformation.ToString());
output.Position = 0;
MemoryStream stream = new MemoryStream();
Utils.Copy(result.UnsealedData, stream);
Assert.AreEqual(ValidationStatus.Valid, result.SecurityInformation.ValidationStatus);
Assert.AreEqual(ETEE::Status.TrustStatus.Unsure, result.SecurityInformation.TrustStatus);
Assert.IsTrue(result.IsNonRepudiatable);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.AuthenticationCertificate.Thumbprint);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.SigningCertificate.Thumbprint);
Assert.AreEqual(str, Encoding.UTF8.GetString(stream.ToArray()));
Assert.IsNotNull(result.SecurityInformation.ToString());
unsealer = DataUnsealerFactory.Create(null, alice);
result = unsealer.Unseal(output);
Console.WriteLine(result.SecurityInformation.ToString());
output.Position = 0;
stream = new MemoryStream();
Utils.Copy(result.UnsealedData, stream);
//Assert.IsInstanceOfType(result.UnsealedData, typeof(WindowsTempFileStream));
Assert.AreEqual(ValidationStatus.Valid, result.SecurityInformation.ValidationStatus);
Assert.AreEqual(ETEE::Status.TrustStatus.Unsure, result.SecurityInformation.TrustStatus);
Assert.IsTrue(result.IsNonRepudiatable);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.AuthenticationCertificate.Thumbprint);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.SigningCertificate.Thumbprint);
Assert.AreEqual(alice["1204544406096826217265"].Thumbprint, result.SecurityInformation.Encryption.Subject.Certificate.Thumbprint);
Assert.AreEqual(str, Encoding.UTF8.GetString(stream.ToArray()));
Assert.IsNotNull(result.SecurityInformation.ToString());
unsealer = DataUnsealerFactory.Create(null, bob);
result = unsealer.Unseal(output);
Console.WriteLine(result.SecurityInformation.ToString());
output.Position = 0;
output.Close();
stream = new MemoryStream();
Utils.Copy(result.UnsealedData, stream);
//Assert.IsInstanceOfType(result.UnsealedData, typeof(WindowsTempFileStream));
Assert.AreEqual(ValidationStatus.Valid, result.SecurityInformation.ValidationStatus);
Assert.AreEqual(ETEE::Status.TrustStatus.Unsure, result.SecurityInformation.TrustStatus);
Assert.IsTrue(result.IsNonRepudiatable);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.AuthenticationCertificate.Thumbprint);
Assert.AreEqual(alice["Authentication"].Thumbprint, result.SigningCertificate.Thumbprint);
Assert.AreEqual(bob["825373489"].Thumbprint, result.SecurityInformation.Encryption.Subject.Certificate.Thumbprint);
Assert.AreEqual(str, Encoding.UTF8.GetString(stream.ToArray()));
Assert.IsNotNull(result.SecurityInformation.ToString());
}
