PrivateKey C# Reference Documentation

PrivateKey

Current Version: 10.0.0

Contains an RSA, DSA, or ECC private key. Provides methods for importing and exporting to/from PEM, DER, PKCS8, PKCS1, PVK, and XML formats. Private keys can be imported/exported to both memory and files.

Object Creation

Chilkat.PrivateKey obj = new Chilkat.PrivateKey();

Properties

BitLength
public int BitLength {get; }
Introduced in version 9.5.0.49

The bit length (strength) of the private key.

top
DebugLogFilePath
public string DebugLogFilePath {get; set; }

If set to a file path, causes each Chilkat method or property call to automatically append it's LastErrorText to the specified log file. The information is appended such that if a hang or crash occurs, it is possible to see the context in which the problem occurred, as well as a history of all Chilkat calls up to the point of the problem. The VerboseLogging property can be set to provide more detailed information.

This property is typically used for debugging the rare cases where a Chilkat method call hangs or generates an exception that halts program execution (i.e. crashes). A hang or crash should generally never happen. The typical causes of a hang are:

  1. a timeout related property was set to 0 to explicitly indicate that an infinite timeout is desired,
  2. the hang is actually a hang within an event callback (i.e. it is a hang within the application code), or
  3. there is an internal problem (bug) in the Chilkat code that causes the hang.

More Information and Examples
(.NET Core C#) Example showing how to use DebugLogFilePath.(C#) Example showing how to use DebugLogFilePath.(Mono C#) Example showing how to use DebugLogFilePath.(PowerShell) Example showing how to use DebugLogFilePath.
top
KeyType
public string KeyType {get; }
Introduced in version 9.5.0.52

The type of private key. Can be "empty", "rsa", "dsa", "ecc" (i.e. ECDSA), or "ed25519".

top
LastErrorHtml
public string LastErrorHtml {get; }

Provides information in HTML format about the last method/property called. If a method call returns a value indicating failure, or behaves unexpectedly, examine this property to get more information.

top
LastErrorText
public string LastErrorText {get; }

Provides information in plain-text format about the last method/property called. If a method call returns a value indicating failure, or behaves unexpectedly, examine this property to get more information.

More Information and Examples
Concept of LastErrorTextLastErrorText Standard Information
top
LastErrorXml
public string LastErrorXml {get; }

Provides information in XML format about the last method/property called. If a method call returns a value indicating failure, or behaves unexpectedly, examine this property to get more information.

top
LastMethodSuccess
public bool LastMethodSuccess {get; set; }

Indicate whether the last method call succeeded or failed. A value of true indicates success, a value of false indicates failure. This property is automatically set for method calls. It is not modified by property accesses. The property is automatically set to indicate success for the following types of method calls:

  • Any method that returns a string.
  • Any method returning a Chilkat object, binary bytes, or a date/time.
  • Any method returning a standard boolean status value where success = true and failure = false.
  • Any method returning an integer where failure is defined by a return value less than zero.

Note: Methods that do not fit the above requirements will always set this property equal to true. For example, a method that returns no value (such as a "void" in C++) will technically always succeed.

top
Pkcs8EncryptAlg
public string Pkcs8EncryptAlg {get; set; }
Introduced in version 9.5.0.49

The encryption algorithm to be used when exporting the key to encrypted PKCS8. The default value is "3des". Possible choices also include "aes128", "aes192", and "aes256". All of the encryption algorithm choices use CBC mode.

top
UncommonOptions
public string UncommonOptions {get; set; }
Introduced in version 9.5.0.96

This is a catch-all property to be used for uncommon needs. This property defaults to the empty string, and should typically remain empty.

top
VerboseLogging
public bool VerboseLogging {get; set; }

If set to true, then the contents of LastErrorText (or LastErrorXml, or LastErrorHtml) may contain more verbose information. The default value is false. Verbose logging should only be used for debugging. The potentially large quantity of logged information may adversely affect peformance.

top
Version
public string Version {get; }

Version of the component/library, such as "9.5.0.94"

More Information and Examples
(.NET Core C#) How to get the Chilkat version at runtime.(C#) How to get the Chilkat version at runtime.(Mono C#) How to get the Chilkat version at runtime.(PowerShell) How to get the Chilkat version at runtime.
top

Methods

GetJwk
public string GetJwk();
Introduced in version 9.5.0.66

Gets the private key in JWK (JSON Web Key) format.

RSA keys have this JWK format: 

         {"kty":"RSA",
          "n":"0vx7agoebGcQ ... JzKnqDKgw",
          "e":"AQAB",
          "d":"X4cTteJY_gn4F ... 4jfcKoAC8Q",
          "p":"83i-7IvMGXoMX ... vn7O0nVbfs",
          "q":"3dfOR9cuYq-0S ... 4vIcb6yelxk",
          "dp":"G4sPXkc6Ya9 ... 8YeiKkTiBj0",
          "dq":"s9lAH9fggBso ... w494Q_cgk",
          "qi":"GyM_p6JrXySi ... zTKhAVRU"}

ECC keys have this JWK format. 

         {"kty":"EC",
          "crv":"P-256",
          "x":"MKBCTNIcKUSDii11ySs3526iDZ8AiTo7Tu6KPAqv7D4",
          "y":"4Etl6SRW2YiLUrN5vfvVHuhp7x8PxltmWWlbbM4IFyM",
          "d":"870MB6gfuTJ4HtUnUvYMyJpr5eUZNP4Bk43bVdj3eAE"}

Ed25519 keys (added in v9.5.0.83) have this JWK format. 

         {"kty": "OKP",
         "crv": "Ed25519",
         "x": "SE2Kne5xt51z1eciMH2T2ftDQp96Gl6FhY6zSQujiP0",
         "d": "O-eRXewadF0sNyB0U9omcnt8Qg2ZmeK3WSXPYgqe570",
         "use": "sig"}

Returns null on failure

More Information and Examples
(.NET Core C#) Get RSA Private Key in JWK Format (JSON Web Key)(C#) Get RSA Private Key in JWK Format (JSON Web Key)(Mono C#) Get RSA Private Key in JWK Format (JSON Web Key)(PowerShell) Get RSA Private Key in JWK Format (JSON Web Key)(.NET Core C#) Get ECC Private Key in JWK Format (JSON Web Key)(C#) Get ECC Private Key in JWK Format (JSON Web Key)(Mono C#) Get ECC Private Key in JWK Format (JSON Web Key)(PowerShell) Get ECC Private Key in JWK Format (JSON Web Key)
top
GetJwkThumbprint
public string GetJwkThumbprint(string hashAlg);
Introduced in version 9.5.0.66

Returns the JWK thumbprint for the private key. This is the thumbprint of the JSON Web Key (JWK) as per RFC 7638.

Returns null on failure

More Information and Examples
(.NET Core C#) Compute JWK Thumbprint for RSA and EC Private Keys(C#) Compute JWK Thumbprint for RSA and EC Private Keys(Mono C#) Compute JWK Thumbprint for RSA and EC Private Keys(PowerShell) Compute JWK Thumbprint for RSA and EC Private Keys
top
GetPkcs1
public byte[] GetPkcs1();
Introduced in version 9.5.0.58

Gets the private key in unencrypted binary DER format, preferring PKCS1 if possible.

RSA keys are returned in PKCS1 ASN.1 DER format: 

RSAPrivateKey ::= SEQUENCE {
    version           Version,
    modulus           INTEGER,  -- n
    publicExponent    INTEGER,  -- e
    privateExponent   INTEGER,  -- d
    prime1            INTEGER,  -- p
    prime2            INTEGER,  -- q
    exponent1         INTEGER,  -- d mod (p-1)
    exponent2         INTEGER,  -- d mod (q-1)
    coefficient       INTEGER,  -- (inverse of q) mod p
    otherPrimeInfos   OtherPrimeInfos OPTIONAL
}

DSA keys are returned in this ASN.1 DER format: 

SEQUENCE(6 elem)
    INTEGER 0
    INTEGER(2048 bit) (p) 
    INTEGER(160 bit) (q) 
    INTEGER(2044 bit) (g) 
    INTEGER(2040 bit) (y - public key) 
    INTEGER(156 bit) (x - private key)

ECC keys are returned in this ASN.1 DER format: 

(from RFC 5915)
ECPrivateKey ::= SEQUENCE {
    version        INTEGER { ecPrivkeyVer1(1) } (ecPrivkeyVer1),
    privateKey     OCTET STRING,
    parameters [0] ECParameters {{ NamedCurve }} OPTIONAL,
    publicKey  [1] BIT STRING OPTIONAL (This is the ANSI X9.63 public key format.)

Returns an empty byte array on failure

top
GetPkcs1ENC
public string GetPkcs1ENC(string encoding);
Introduced in version 9.5.0.52

Gets the private key in unencrypted binary DER format, preferring PKCS1 if possible, and returns in an encoded string, as specified by the encoding argument.

RSA keys are returned in PKCS1 ASN.1 DER format: 

RSAPrivateKey ::= SEQUENCE {
    version           Version,
    modulus           INTEGER,  -- n
    publicExponent    INTEGER,  -- e
    privateExponent   INTEGER,  -- d
    prime1            INTEGER,  -- p
    prime2            INTEGER,  -- q
    exponent1         INTEGER,  -- d mod (p-1)
    exponent2         INTEGER,  -- d mod (q-1)
    coefficient       INTEGER,  -- (inverse of q) mod p
    otherPrimeInfos   OtherPrimeInfos OPTIONAL
}

DSA keys are returned in this ASN.1 DER format: 

SEQUENCE(6 elem)
    INTEGER 0
    INTEGER(2048 bit) (p) 
    INTEGER(160 bit) (q) 
    INTEGER(2044 bit) (g) 
    INTEGER(2040 bit) (y - public key) 
    INTEGER(156 bit) (x - private key)

ECC keys are returned in this ASN.1 DER format: 

(from RFC 5915)
ECPrivateKey ::= SEQUENCE {
    version        INTEGER { ecPrivkeyVer1(1) } (ecPrivkeyVer1),
    privateKey     OCTET STRING,
    parameters [0] ECParameters {{ NamedCurve }} OPTIONAL,
    publicKey  [1] BIT STRING OPTIONAL (This is the ANSI X9.63 public key format.)

Returns null on failure

More Information and Examples
Supported Binary Encodings
top
GetPkcs1Pem
public string GetPkcs1Pem();
Introduced in version 9.5.0.58

Gets the private key in non-encrypted PEM format, preferring PKCS1 over PKCS8 if possible for the key type.

Returns null on failure

top
GetPkcs8
public byte[] GetPkcs8();

Gets the private key in unencrypted PKCS8 format.

RSA keys are returned in PKCS8 ASN.1 DER format: 

SEQUENCE                  // PrivateKeyInfo
+- INTEGER                // Version - 0 (v1998)
+- SEQUENCE               // AlgorithmIdentifier
   +- OID                 // 1.2.840.113549.1.1.1
   +- NULL                // Optional Parameters
+- OCTETSTRING            // PrivateKey
   +- SEQUENCE            // RSAPrivateKey
      +- INTEGER(0)       // Version - v1998(0)
      +- INTEGER(N)       // N
      +- INTEGER(E)       // E
      +- INTEGER(D)       // D
      +- INTEGER(P)       // P
      +- INTEGER(Q)       // Q
      +- INTEGER(DP)      // d mod p-1
      +- INTEGER(DQ)      // d mod q-1
      +- INTEGER(Inv Q)   // INV(q) mod p

DSA keys are returned in this ASN.1 DER format: 

SEQUENCE                 // PrivateKeyInfo
+- INTEGER                 // Version
+- SEQUENCE              // AlgorithmIdentifier
    +- OID                       // 1.2.840.10040.4.1
    +- SEQUENCE           // DSS-Params (Optional Parameters)
	+- INTEGER(P)      // P
	+- INTEGER(Q)      // Q
	+- INTEGER(G)      // G
    +- OCTETSTRING             // PrivateKey
	+- INTEGER(X)      // DSAPrivateKey X

ECC keys are returned in this ASN.1 DER format: 

(from RFC 5915)
ECPrivateKey ::= SEQUENCE {
    version        INTEGER { ecPrivkeyVer1(1) } (ecPrivkeyVer1),
    privateKey     OCTET STRING,
    parameters [0] ECParameters {{ NamedCurve }} OPTIONAL,
    publicKey  [1] BIT STRING OPTIONAL (This is the ANSI X9.63 public key format.)

Returns an empty byte array on failure

top
GetPkcs8ENC
public string GetPkcs8ENC(string encoding);
Introduced in version 9.5.0.52

Gets the private key in unencrypted PKCS8 format and returned in an encoded string, as specified by the encoding argument.

Returns null on failure

More Information and Examples
Supported Binary Encodings(.NET Core C#) Generate RSA Key and return Base64 PKCS8 Private Key(C#) Generate RSA Key and return Base64 PKCS8 Private Key(Mono C#) Generate RSA Key and return Base64 PKCS8 Private Key(PowerShell) Generate RSA Key and return Base64 PKCS8 Private Key
top
GetPkcs8Encrypted
public byte[] GetPkcs8Encrypted(string password);

Writes the private key to password-protected PKCS8 format. The Pkcs8EncryptAlg property controls the encryption algorithm used to encrypt.

Returns an empty byte array on failure

top
GetPkcs8EncryptedENC
public string GetPkcs8EncryptedENC(string encoding, string password);
Introduced in version 9.5.0.52

Writes the private key to password-protected PKCS8 format and returns as an encoded string as specified by the encoding argument. The Pkcs8EncryptAlg property controls the encryption algorithm used to encrypt.

Returns null on failure

More Information and Examples
Supported Binary Encodings
top
GetPkcs8EncryptedPem
public string GetPkcs8EncryptedPem(string password);

Writes the private key to password-protected PKCS8 PEM format. The Pkcs8EncryptAlg property controls the encryption algorithm used to encrypt.

Returns null on failure

More Information and Examples
(.NET Core C#) Generate RSA Key and Export to Encrypted PEM(C#) Generate RSA Key and Export to Encrypted PEM(Mono C#) Generate RSA Key and Export to Encrypted PEM(PowerShell) Generate RSA Key and Export to Encrypted PEM
top
GetPkcs8Pem
public string GetPkcs8Pem();

Gets the private key in PKCS8 PEM format.

Returns null on failure

top
GetPublicKey
public PublicKey GetPublicKey();
Introduced in version 9.5.0.52

Returns the public key portion of the private key as a public key object.

Returns null on failure

More Information and Examples
(.NET Core C#) Convert RSA Private Key to Public Key(C#) Convert RSA Private Key to Public Key(Mono C#) Convert RSA Private Key to Public Key(PowerShell) Convert RSA Private Key to Public Key(.NET Core C#) Get ECC Public Key from ECC Private Key(C#) Get ECC Public Key from ECC Private Key(Mono C#) Get ECC Public Key from ECC Private Key(PowerShell) Get ECC Public Key from ECC Private Key
top
GetRawHex
public string GetRawHex(StringBuilder pubKey);
Introduced in version 9.5.0.83

Returns the private key in raw hex format (lowercase). The public key is written to pubKey.

Ed25519 private and public keys are 32-byte each (64 chars in hex format).

The length of an EC key depends on the curve. The private key is a single hex string. The public key is a hex string composed of the "x" and "y" parts of the public key like this: 

    04||HEX(x)||HEX(y)

Note: This method is only applicable to Ed25519 and ECDSA keys. An RSA key cannot be returned in such as simple raw format because it is composed of multiple parts (modulus, exponent, and more).

Returns null on failure

More Information and Examples
(.NET Core C#) Get an EC Key in Raw Hex Format(C#) Get an EC Key in Raw Hex Format(Mono C#) Get an EC Key in Raw Hex Format(PowerShell) Get an EC Key in Raw Hex Format(.NET Core C#) Get an Ed25519 Key in Raw Hex Format(C#) Get an Ed25519 Key in Raw Hex Format(Mono C#) Get an Ed25519 Key in Raw Hex Format(PowerShell) Get an Ed25519 Key in Raw Hex Format
top
GetXml
public string GetXml();

Returns the private key in XML format. The private key is returned unencrypted and the parts are base64 encoded.

RSA keys have this XML format: 

<RSAKeyValue>
  <Modulus>...</Modulus>
  <Exponent>...</Exponent>
  <P>...</P>
  <Q>...</Q>
  <DP>...</DP>
  <DQ>...</DQ>
  <InverseQ>...</InverseQ>
  <D>...</D>
</RSAKeyValue>

DSA keys have this XML format: 

<DSAKeyValue>
	<P>...</P>
	<Q>...</Q>
	<G>...</G>
	<Y>...</Y>
	<X>...</X>
</DSAKeyValue>

ECC keys have this XML format. The CURVE_NAME could be one of secp256r1, secp384r1, secp521r1, secp256k1 (or others as new curves are supported.) 

<ECCKeyValue curve="CURVE_NAME">...</ECCKeyValue>

Returns null on failure

More Information and Examples
(.NET Core C#) Get RSA Key Modulus from .cer or .key(C#) Get RSA Key Modulus from .cer or .key(Mono C#) Get RSA Key Modulus from .cer or .key(PowerShell) Get RSA Key Modulus from .cer or .key
top
LoadAnyFormat
public bool LoadAnyFormat(BinData privKeyData, string password);
Introduced in version 9.5.0.75

Loads a private key from any format (PKCS1, PKCS8, PEM, JWK, PVK, etc.). The contents of the key (binary or text) is passed in privKeyData. The password is optional and should be specified if needed.

Returns true for success, false for failure.

More Information and Examples
(.NET Core C#) Use HTTPS Client Certificate from .cer and .key Files(C#) Use HTTPS Client Certificate from .cer and .key Files(Mono C#) Use HTTPS Client Certificate from .cer and .key Files(PowerShell) Use HTTPS Client Certificate from .cer and .key Files
top
LoadAnyFormatFile
public bool LoadAnyFormatFile(string path, string password);
Introduced in version 9.5.0.83

Loads a private key from a file in any format (PKCS1, PKCS8, PEM, JWK, PVK, etc.). The password is optional and should be specified if needed.

Returns true for success, false for failure.

top
LoadEd25519
public bool LoadEd25519(string privKey, string pubKey);
Introduced in version 9.5.0.83

Loads the private key object with an ed25519 key pair. The privKey is the 32-byte private key as a hex string. The pubKey is the 32-byte public key as a hex string. pubKey may be an empty string, in which case the public key is automatically computed from the private key.

Returns true for success, false for failure.

More Information and Examples
(.NET Core C#) Load an Ed25519 Private Key from Hex(C#) Load an Ed25519 Private Key from Hex(Mono C#) Load an Ed25519 Private Key from Hex(PowerShell) Load an Ed25519 Private Key from Hex
top
LoadEncryptedPem
public bool LoadEncryptedPem(string pemStr, string password);

Loads the private key from an in-memory encrypted PEM string. An encrypted PEM contains the private key in encrypted PKCS#8 format, where the data begins and ends with the following tags: 

-----BEGIN ENCRYPTED PRIVATE KEY-----
BASE64 ENCODED DATA
-----END ENCRYPTED PRIVATE KEY-----

For those requiring a deeper understanding: The base64 data contains ASN.1 DER with the following structure: 

EncryptedPrivateKeyInfo ::= SEQUENCE {
  encryptionAlgorithm  EncryptionAlgorithmIdentifier,
  encryptedData        EncryptedData
}

EncryptionAlgorithmIdentifier ::= AlgorithmIdentifier

EncryptedData ::= OCTET STRING

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

More Information and Examples
(.NET Core C#) Compute JWK Thumbprint for RSA and EC Private Keys(C#) Compute JWK Thumbprint for RSA and EC Private Keys(Mono C#) Compute JWK Thumbprint for RSA and EC Private Keys(PowerShell) Compute JWK Thumbprint for RSA and EC Private Keys
top
LoadEncryptedPemFile
public bool LoadEncryptedPemFile(string path, string password);

Loads a private key from an encrypted PEM file.

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

More Information and Examples
(.NET Core C#) Duplicate OpenSSL smime Command(C#) Duplicate OpenSSL smime Command(Mono C#) Duplicate OpenSSL smime Command(PowerShell) Duplicate OpenSSL smime Command
top
LoadJwk
public bool LoadJwk(string jsonStr);
Introduced in version 9.5.0.66

Loads a private key from an JWK (JSON Web Key) string.

RSA keys have this JWK format: 

         {"kty":"RSA",
          "n":"0vx7agoebGcQ ... JzKnqDKgw",
          "e":"AQAB",
          "d":"X4cTteJY_gn4F ... 4jfcKoAC8Q",
          "p":"83i-7IvMGXoMX ... vn7O0nVbfs",
          "q":"3dfOR9cuYq-0S ... 4vIcb6yelxk",
          "dp":"G4sPXkc6Ya9 ... 8YeiKkTiBj0",
          "dq":"s9lAH9fggBso ... w494Q_cgk",
          "qi":"GyM_p6JrXySi ... zTKhAVRU"}

ECC keys have this JWK format. 

         {"kty":"EC",
          "crv":"P-256",
          "x":"MKBCTNIcKUSDii11ySs3526iDZ8AiTo7Tu6KPAqv7D4",
          "y":"4Etl6SRW2YiLUrN5vfvVHuhp7x8PxltmWWlbbM4IFyM",
          "d":"870MB6gfuTJ4HtUnUvYMyJpr5eUZNP4Bk43bVdj3eAE"}

Ed25519 keys (added in v9.5.0.83) have this JWK format. 

         {"kty": "OKP",
         "crv": "Ed25519",
         "x": "SE2Kne5xt51z1eciMH2T2ftDQp96Gl6FhY6zSQujiP0",
         "d": "O-eRXewadF0sNyB0U9omcnt8Qg2ZmeK3WSXPYgqe570",
         "use": "sig"}

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

More Information and Examples
(.NET Core C#) Load RSA Private Key from JWK Format (JSON Web Key)(C#) Load RSA Private Key from JWK Format (JSON Web Key)(Mono C#) Load RSA Private Key from JWK Format (JSON Web Key)(PowerShell) Load RSA Private Key from JWK Format (JSON Web Key)(.NET Core C#) Load ECC Private Key from JWK Format (JSON Web Key)(C#) Load ECC Private Key from JWK Format (JSON Web Key)(Mono C#) Load ECC Private Key from JWK Format (JSON Web Key)(PowerShell) Load ECC Private Key from JWK Format (JSON Web Key)(.NET Core C#) JWE using RSAES-OAEP and AES GCM(C#) JWE using RSAES-OAEP and AES GCM(Mono C#) JWE using RSAES-OAEP and AES GCM(PowerShell) JWE using RSAES-OAEP and AES GCM
top
LoadPem
public bool LoadPem(string str);

Loads the private key from an in-memory PEM string. If the PEM contains an encrypted private key, then the LoadEncryptedPem method should instead be called. This method is for loading an unencrypted private key stored in PEM using PKCS#1 or PKCS#8.

A private key stored in PKCS#1 format begins and ends with the tags: 

-----BEGIN RSA PRIVATE KEY-----
BASE64 ENCODED DATA
-----END RSA PRIVATE KEY-----

For those requiring a deeper understanding, the PKCS1 base64 contains ASN.1 in DER encoding with the following structure: 

RSAPrivateKey ::= SEQUENCE {
  version           Version,
  modulus           INTEGER,  -- n
  publicExponent    INTEGER,  -- e
  privateExponent   INTEGER,  -- d
  prime1            INTEGER,  -- p
  prime2            INTEGER,  -- q
  exponent1         INTEGER,  -- d mod (p-1)
  exponent2         INTEGER,  -- d mod (q-1)
  coefficient       INTEGER,  -- (inverse of q) mod p
  otherPrimeInfos   OtherPrimeInfos OPTIONAL
}

A private key stored in PKCS#8 format begins and ends with the tags: 

-----BEGIN PRIVATE KEY-----
BASE64 ENCODED DATA
-----END PRIVATE KEY-----

For those requiring a deeper understanding, the PKCS8 base64 contains ASN.1 in DER encoding with the following structure: 

PrivateKeyInfo ::= SEQUENCE {
  version         Version,
  algorithm       AlgorithmIdentifier,
  PrivateKey      BIT STRING
}

AlgorithmIdentifier ::= SEQUENCE {
  algorithm       OBJECT IDENTIFIER,
  parameters      ANY DEFINED BY algorithm OPTIONAL
}

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

More Information and Examples
(.NET Core C#) Compute JWK Thumbprint for RSA and EC Private Keys(C#) Compute JWK Thumbprint for RSA and EC Private Keys(Mono C#) Compute JWK Thumbprint for RSA and EC Private Keys(PowerShell) Compute JWK Thumbprint for RSA and EC Private Keys
top
LoadPemFile
public bool LoadPemFile(string path);

Loads a private key from a PEM file.

Returns true for success, false for failure.

More Information and Examples
(.NET Core C#) Create PKCS1 RSA Signature with PEM Private Key(C#) Create PKCS1 RSA Signature with PEM Private Key(Mono C#) Create PKCS1 RSA Signature with PEM Private Key(PowerShell) Create PKCS1 RSA Signature with PEM Private Key
top
LoadPkcs1
public bool LoadPkcs1(byte[] data);
Introduced in version 9.5.0.58

Loads an RSA, ECC, or DSA private key from binary DER.

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

top
LoadPkcs1File
public bool LoadPkcs1File(string path);
Introduced in version 9.5.0.58

Loads a private key from a PKCS1 file.

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

top
LoadPkcs8
public bool LoadPkcs8(byte[] data);

Loads a private key from in-memory PKCS8 byte data.

For those requiring a deeper understanding, the PKCS8 contains ASN.1 in DER encoding with the following structure: 

PrivateKeyInfo ::= SEQUENCE {
  version         Version,
  algorithm       AlgorithmIdentifier,
  PrivateKey      BIT STRING
}

AlgorithmIdentifier ::= SEQUENCE {
  algorithm       OBJECT IDENTIFIER,
  parameters      ANY DEFINED BY algorithm OPTIONAL
}

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

top
LoadPkcs8Encrypted
public bool LoadPkcs8Encrypted(byte[] data, string password);

Loads a private key from in-memory password-protected PKCS8 byte data.

For those requiring a deeper understanding, the encrypted PKCS8 contains ASN.1 in DER encoding with the following structure: 

EncryptedPrivateKeyInfo ::= SEQUENCE {
  encryptionAlgorithm  EncryptionAlgorithmIdentifier,
  encryptedData        EncryptedData
}

EncryptionAlgorithmIdentifier ::= AlgorithmIdentifier

EncryptedData ::= OCTET STRING

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

top
LoadPkcs8EncryptedFile
public bool LoadPkcs8EncryptedFile(string path, string password);

Loads a private key from an encrypted PKCS8 file.

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

More Information and Examples
(.NET Core C#) RSA Sign with PKCS8 Encrypted Key(C#) RSA Sign with PKCS8 Encrypted Key(Mono C#) RSA Sign with PKCS8 Encrypted Key(PowerShell) RSA Sign with PKCS8 Encrypted Key
top
LoadPkcs8File
public bool LoadPkcs8File(string path);

Loads a private key from a PKCS8 file.

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

top
LoadPvk
public bool LoadPvk(byte[] data, string password);

Loads a private key from in-memory PVK byte data.

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

top
LoadPvkFile
public bool LoadPvkFile(string path, string password);

Loads a private key from a PVK format file.

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

More Information and Examples
(.NET Core C#) Load Certificate (.cer) and Private Key (.pvk) generated from makecert(C#) Load Certificate (.cer) and Private Key (.pvk) generated from makecert(Mono C#) Load Certificate (.cer) and Private Key (.pvk) generated from makecert(PowerShell) Load Certificate (.cer) and Private Key (.pvk) generated from makecert
top
LoadXml
public bool LoadXml(string xml);

Loads a private key from an XML string.

RSA keys have this XML format: 

<RSAKeyValue>
  <Modulus>...</Modulus>
  <Exponent>...</Exponent>
  <P>...</P>
  <Q>...</Q>
  <DP>...</DP>
  <DQ>...</DQ>
  <InverseQ>...</InverseQ>
  <D>...</D>
</RSAKeyValue>

DSA keys have this XML format: 

<DSAKeyValue>
	<P>...</P>
	<Q>...</Q>
	<G>...</G>
	<Y>...</Y>
	<X>...</X>
</DSAKeyValue>

ECC keys have this XML format. The CURVE_NAME could be one of secp256r1, secp384r1, secp521r1, secp256k1 (or others as new curves are supported.) 

<ECCKeyValue curve="CURVE_NAME">...</ECCKeyValue>

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

top
LoadXmlFile
public bool LoadXmlFile(string path);

Loads a private key from an XML file.

Note: Each of the private key Load* methods willl auto-recognize the content and will parse appropriately. The private key should be successfully loaded even when the wrong format data is passed to the wrong method.

Returns true for success, false for failure.

top
SavePemFile
public bool SavePemFile(string path);
Introduced in version 9.5.0.58

Saves the private key to an unencrypted PKCS1 PEM format file.

Returns true for success, false for failure.

top
SavePkcs1File
public bool SavePkcs1File(string path);
Introduced in version 9.5.0.58

Saves the private key to an unencrypted binary PKCS1 format file.

Returns true for success, false for failure.

top
SavePkcs8EncryptedFile
public bool SavePkcs8EncryptedFile(string password, string path);

Saves the private key to a password-protected PKCS8 format file. The Pkcs8EncryptAlg property controls the encryption algorithm used to encrypt.

Returns true for success, false for failure.

top
SavePkcs8EncryptedPemFile
public bool SavePkcs8EncryptedPemFile(string password, string path);

Saves the private key to a password-protected PKCS8 PEM format file. The Pkcs8EncryptAlg property controls the encryption algorithm used to encrypt.

Returns true for success, false for failure.

More Information and Examples
(.NET Core C#) Export a Private Key from an MS Storage Provider(C#) Export a Private Key from an MS Storage Provider(Mono C#) Export a Private Key from an MS Storage Provider(PowerShell) Export a Private Key from an MS Storage Provider
top
SavePkcs8File
public bool SavePkcs8File(string path);

Saves the private key to an unencrypted binary PKCS8 format file.

Returns true for success, false for failure.

top
SavePkcs8PemFile
public bool SavePkcs8PemFile(string path);

Saves the private key to a PKCS8 PEM format file.

Returns true for success, false for failure.

top
SaveXmlFile
public bool SaveXmlFile(string path);

Saves the private key to an XML file.

Returns true for success, false for failure.

top
UploadToCloud
public bool UploadToCloud(JsonObject jsonIn, JsonObject jsonOut);
Introduced in version 9.5.0.96

This is an open-ended method to accomodate uploading the private key to a cloud service, such as AWS KMS, or Azure Key Vault. For details, see the examples below.

Returns true for success, false for failure.

top
UploadToCloudAsync (.NET Core C#) (C#) (Mono C#) (PowerShell)
public Task UploadToCloudAsync(JsonObject jsonIn, JsonObject jsonOut);
Introduced in version 9.5.0.96

Creates an asynchronous task to call the UploadToCloud method with the arguments provided. (Async methods are available starting in Chilkat v9.5.0.52.)

Note: Async method event callbacks happen in the background thread. Accessing and updating UI elements existing in the main thread may require special considerations.

Returns null on failure

top

Events

AbortCheck
public event AbortCheckEventHandler OnAbortCheck;

Provides the opportunity for a method call to be aborted. The AbortCheck event is fired periodically based on the value of the HeartbeatMs property. If HeartbeatMs is 0, then no AbortCheck events will fire. As an example, to fire 5 AbortCheck events per second, set the HeartbeatMs property equal to 200.

Chilkat .NET Event Implementation

Args are passed using Chilkat.AbortCheckEventArgs

Event callback implementation:

private void privatekey_OnAbortCheck(object sender, Chilkat.AbortCheckEventArgs args)
	{
	    // application code goes here.
	}

To add an event handler:

Chilkat.PrivateKey privatekey = new Chilkat.PrivateKey();
privatekey.OnAbortCheck += privatekey_OnAbortCheck;

Chilkat Mono/.NET Core Event Implementation

Event callback implementation:

public void handleAbortCheck(out bool abort)
	{
	    // application code goes here.
	}

To add an event handler:

Chilkat.PrivateKey privatekey = new Chilkat.PrivateKey();
// ...
Chilkat.PrivateKey.AbortCheck abortCheck = new Chilkat.PrivateKey.AbortCheck(handleAbortCheck);
privatekey.setAbortCheckCb(abortCheck);
top
PercentDone
public event PercentDoneEventHandler OnPercentDone;

Provides the percentage completed for any method that involves network communications or time-consuming processing (assuming it is a method where a percentage completion can be measured). This event is only fired when it is possible to know a percentage completion, and when it makes sense to express the operation as a percentage completed. The pctDone argument will have a value from 1 to 100. For operations (Chilkat method calls) that complete very quickly, the number of PercentDone callbacks will vary, but the final callback should have a value of 100. For long running operations, no more than one callback per percentage point will occur (for example: 1, 2, 3, ... 98, 99, 100).

The PercentDone callback counts as an AbortCheck event. For method calls that complete quickly such that PercentDone events fire, it may be that AbortCheck events don't fire because the opportunity to abort is already provided in the PercentDone callback. For time consuming operations, where the amount of time between PercentDone callbacks are long, AbortCheck callbacks may be used to allow for the operation to be aborted in a more responsive manner.

The abort output argument provides a means for aborting the operation. Setting it to true will cause the method to abort and return a failed status (or whatever return value indicates failure).

Chilkat .NET Event Implementation

Args are passed using Chilkat.PercentDoneEventArgs

Event callback implementation:

private void privatekey_OnPercentDone(object sender, Chilkat.PercentDoneEventArgs args)
	{
	    // application code goes here.
	}

To add an event handler:

Chilkat.PrivateKey privatekey = new Chilkat.PrivateKey();
privatekey.OnPercentDone += privatekey_OnPercentDone;

Chilkat Mono/.NET Core Event Implementation

Event callback implementation:

public void handlePercentDone(int pctDone, out bool abort)
	{
	    // application code goes here.
	}

To add an event handler:

Chilkat.PrivateKey privatekey = new Chilkat.PrivateKey();
// ...
Chilkat.PrivateKey.PercentDone percentDone = new Chilkat.PrivateKey.PercentDone(handlePercentDone);
privatekey.setPercentDoneCb(percentDone);
top
ProgressInfo
public event ProgressInfoEventHandler OnProgressInfo;

A general name/value event that provides information about what is happening during a method call. To find out what information is available, write code to handle this event and log the name/value pairs. Most are self-explanatory.

Chilkat .NET Event Implementation

Args are passed using Chilkat.ProgressInfoEventArgs

Event callback implementation:

private void privatekey_OnProgressInfo(object sender, Chilkat.ProgressInfoEventArgs args)
	{
	    // application code goes here.
	}

To add an event handler:

Chilkat.PrivateKey privatekey = new Chilkat.PrivateKey();
privatekey.OnProgressInfo += privatekey_OnProgressInfo;

Chilkat Mono/.NET Core Event Implementation

Event callback implementation:

public void handleProgressInfo(string name, string value)
	{
	    // application code goes here.
	}

To add an event handler:

Chilkat.PrivateKey privatekey = new Chilkat.PrivateKey();
// ...
Chilkat.PrivateKey.ProgressInfo progressInfo = new Chilkat.PrivateKey.ProgressInfo(handleProgressInfo);
privatekey.setProgressInfoCb(progressInfo);
top
TaskCompleted
public event TaskCompletedEventHandler OnTaskCompleted;

Called in the background thread when an asynchronous task completes.

More Information and Examples
C# .NET Framework TaskCompleted Event Callback ExampleC# .NET Core TaskCompleted Event Callback Example

Chilkat .NET Event Implementation

Args are passed using Chilkat.TaskCompletedEventArgs

Event callback implementation:

private void privatekey_OnTaskCompleted(object sender, Chilkat.TaskCompletedEventArgs args)
	{
	    // application code goes here.
	}

To add an event handler:

Chilkat.PrivateKey privatekey = new Chilkat.PrivateKey();
privatekey.OnTaskCompleted += privatekey_OnTaskCompleted;

Chilkat Mono/.NET Core Event Implementation

Event callback implementation:

public void handleTaskIdCompleted(int taskId)
	{
	    // application code goes here.
	}

To add an event handler:

Chilkat.PrivateKey privatekey = new Chilkat.PrivateKey();
// ...
Chilkat.PrivateKey.TaskIdCompleted taskIdCompleted = new Chilkat.PrivateKey.TaskIdCompleted(handleTaskIdCompleted);
privatekey.setTaskIdCompletedCb(taskIdCompleted);
top