Sample code for 30+ languages & platforms
Android™

RSA Sign using a Private Key on a USB Token or Smartcard

See more Apple Keychain Examples

Create an RSA signature using a private key stored on a USB token or smartcard.

Note: On MacOS and iOS, this example requires Chilkat v10.1.2 or later when the Apple Keychain is used as the underlying means to do the signing.

Chilkat Android™ Downloads

Android™
// Important: Don't forget to include the call to System.loadLibrary
// as shown at the bottom of this code sample.
package com.test;

import android.app.Activity;
import com.chilkatsoft.*;

import android.widget.TextView;
import android.os.Bundle;

public class SimpleActivity extends Activity {

  private static final String TAG = "Chilkat";

  // Called when the activity is first created.
  @Override
  public void onCreate(Bundle savedInstanceState) {
    super.onCreate(savedInstanceState);

    boolean success = false;

    // Assuming the smartcard/USB token is installed with the correct drivers from the manufacturer,
    // this code can work on multiple platforms including Windows, MacOS, Linux, and iOS.

    // Chilkat automatically detects and determines the way in which the HSM is used,
    // which can be by PKCS11, Apple Keychain, Microsoft CNG / Crypto API, or ScMinidriver.

    CkCert cert = new CkCert();

    // Set the token/smartcard PIN prior to loading.
    cert.put_SmartCardPin("123456");

    // Specify the certificate by its common name.
    success = cert.LoadFromSmartcard("cn=chilkat-rsa-2048");
    if (success == false) {
        Log.i(TAG, cert.lastErrorText());
        return;
        }

    Log.i(TAG, "Signing with cert: " + cert.subjectCN());

    // Create data to be hashed and signed.
    CkBinData bd = new CkBinData();
    int i;
    for (i = 0; i <= 100; i++) {
        bd.AppendEncoded("000102030405060708090A0B0C0D0E0F","hex");
        }

    CkRsa rsa = new CkRsa();

    // Use the certificate's private key for signing.
    success = rsa.SetX509Cert(cert,true);
    if (success == false) {
        Log.i(TAG, rsa.lastErrorText());
        return;
        }

    // Sign the SHA-256 hash of the contents of bd.
    CkBinData bdSig = new CkBinData();
    success = rsa.SignBd(bd,"sha256",bdSig);
    if (success == false) {
        Log.i(TAG, rsa.lastErrorText());
        return;
        }

    // The RSA signature is equal in length to the size of the RSA key.
    Log.i(TAG, "Output signature size in bits = " + String.valueOf(bdSig.get_NumBytes() * 8));

    // We can save the signature for later verification..
    bdSig.WriteFile("rsaSignatures/test1.sig");

    // See the example to verify the RSA signature:
    // Verfies an RSA Signature

  }

  static {
      System.loadLibrary("chilkat");

      // Note: If the incorrect library name is passed to System.loadLibrary,
      // then you will see the following error message at application startup:
      //"The application <your-application-name> has stopped unexpectedly. Please try again."
  }
}