PHP + ECP how to sign a file?

D

devlocal2020-06-04 10:04:10

linux

devlocal, 2020-06-04 10:04:10

Maybe someone has come across or knows how to sign the uploaded file with the help of the EDS using PHP.
And is it realistic to implement this?
Perhaps the names of some libraries.

You need to upload your EDS to the server, then upload the file that needs to be signed, and actually sign the file. From a security point of view, I understand that it's nonsense, but the customer wants it that way.

Reply

Answer the question

In order to leave comments, you need to log in

4 answer(s)

A

Anton Shamanov, 2020-06-04
@SilenceOfWinter

cpdn.cryptopro.ru/?url=/content/cades/phpcades.html

L

Lone Ice, 2020-06-04
@daemonhk

Russia, Kazakhstan? In any case, you won't be able to do this without a Certification Authority. Contact the SDK developers for libraries, instructions, and more.

D

Dmitry Shitskov, 2020-06-04
@Zarom

https://www.php.net/manual/ru/function.openssl-sign.php

P

PeeX, 2020-06-05
@PeeX

If this is an internal thing "for itself" and no legally significant workflow is implied (for example, the RSA algorithm), then php openssl is enough, for some kind of GOST you need a northern CSP that works with php (I tried it with CryptoPro CSP - it works) and openssl
If you are not an employee of an office that will then exploit all this, then in order to develop such things (signing / encryption) you need to license your activities, then certify what you create. Well, yes, if it will serve more than one single person, then transferring the EDS is generally a bad idea. You need to sign in the browser