Chapter 8: XEncrypt - Client-side ActiveX Control

The AspEncrypt.dll file contains an ActiveX control component called XEncrypt which can be used on the client side inside Internet Explorer. Therefore, all the cryptographic operations offered by AspEncrypt can be performed on the user's machine and not just the web server. XEncrypt exposes the same properties and methods as CryptoManager with the exception of a few methods not applicable to client-side operations.

Most importantly, XEncrypt allows your Web-based application to perform operations involving the user's private key such as digital signing or data decryption without jeopardizing the security of the private key.

XEncrypt does not require a registration key, so you do not need to purchase a license for every client machine XEncrypt will be downloaded to. However, XEncrypt will only work under IE and not any other environment such as VB, etc. For containers other than IE, you must continue using the CryptoManager object which requires a registration key.

The XEncrypt ActiveX control resides in the same DLL as the rest of the AspEncrypt objects, aspencrypt.dll. To use XEncrypt on the client side, your web page must reference it using the <OBJECT> tag, as follows:

The CLASSID attribute is the globally unique identifier (GUID) of the XEncrypt control.

The CODEBASE attribute points to a relative path of the file aspencrypt.dll on your server. For this code to work, you must place the file aspencrypt.dll in a virtual directory on your web server where the browser can find and download it from. Note that you do not need to register aspencrypt.dll in that location. Your web server may have the file aspencrypt.dll registered in, say, the system folder c:\windows\system32, and another copy of that file placed in the same virtual directory as the HTML or ASP files that reference it.

The IE browser keeps cached copies of all ActiveX controls it has downloaded and installed in the past. This way it does not have to re-download and reinstall a control every time a page hosting this control is viewed by the user. However, if a new version of the control DLL file is placed on the server, if is necessary to force IE to download and reinstall this new version. This is achieved by appending a #VERSION=... keyword to the name of the DLL file in the CODEBASE attribute, as follows:

The ID attribute is to be used by client-side scripts to reference the XEncrypt control (see code samples below).

AspEncrypt is a digitally signed DLL, so when your users run this page for the first time, they will see a message at the top of the page similar to this:

and after that, a dialog box similar to this:

If the user chooses "Install", the browser will download and register the file aspencrypt.dll on the user's machine. The AspEncrypt library is signed with Persits Software, Inc.'s digital ID. If you want your company's name to appear on this security dialog and not Persits Software, Inc., contact us and we will send you an unsigned copy of the DLL. You can then sign it using your own digital ID.

XEncrypt is an invisible control with no user interface. It can only be invoked by client-side script. The following code sample demonstrates simple text encryption and decryption performed on the client side:

This code is very similar to the server-side scripts we have seen in the previous chapters except that here we do not explicitly create an instance of the CryptoManager object via CreateObject or New. Instead, the XEncrypt object is created via an <OBJECT> tag. Another difference is that we pass False instead of True to the OpenContext method to instruct XEncrypt to use a key container in the HKEY_CURRENT_USER and not HKEY_LOCAL_MACHINE portion of the registry.

Click the links below to run this code sample:

http://localhost/aspencrypt/manual_08/08_simple_vb.htm http://localhost/aspencrypt/manual_08/08_simple_js.htm

The main reason why XEncrypt has been introduced is to provide easy and safe access to the user's private keys residing on the client machine. XEncrypt enables the user to generate digital signatures and decrypt data with her private key using the IE browser. The private key never has to leave the user's machine, so its security is not jeopardized.

Once the user has obtained a personal certificate, he can start using its private key to perform digital signing or data decryption. The following code sample demonstrates how XEncrypt can be used to compute the digital signature of a text string with the user's certificate:

This code sample uses the previously unseen method PickCertificate exposed by XEncrypt. This method uses the undocumented CryptoAPI method CryptUIDlgSelectCertificateW which displays a list of certificates from a given certificate store. In our case we use the "MY" store opened by a call to CM.OpenStore.

PickCertificate's second argument is a combination of flags that hide certain attributes in the certificate list. In our case we hide all attributes except "Issued To", "Issued By" and "Expiration Date." The third and fourth arguments are optional. They specify captions displayed by the title and body of the certificate list dialog.

The PickCertificate method returns a CryptoCert object representing the user-selected certificate. Our code sample then uses this certificate's private key context to create a CryptoHash object, add user-specified text to it and create a digital signature via the Sign method. Certificate-based signing was already described in detail in Section 6.4 of Chapter 6. Note that we pass Context.KeySpec (which can be True or False) to the Sign method to ensure we are using the correct key pair from this certificate's key container.

Click the links below to run this code sample:

http://localhost/aspencrypt/manual_08/08_signcert_vb.htm http://localhost/aspencrypt/manual_08/08_signcert_js.htm

To verify the signatures created with this code sample use the signature verification code of Section 6.4.