Sample code for 30+ languages & platforms
Objective-C

Create CAdES-BES .p7m using Smart Card or USB Token

See more Digital Signatures Examples

Demonstrates how to create a CAdES BES invoice.xml.p7m using a certificate stored on a smart card or USB token.

Note: This example requires Chilkat v9.5.0.77 and at the time of this writing is restricted to the Windows operating system.

Chilkat Objective-C Downloads

Objective-C
#import <CkoCrypt2.h>
#import <CkoCert.h>
#import <CkoJsonObject.h>
#import <NSString.h>

BOOL success = NO;

// Note: Requires Chilkat v9.5.0.77 or greater.

// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

CkoCrypt2 *crypt = [[CkoCrypt2 alloc] init];

// Use a certificate on a smartcard or USB token.
CkoCert *cert = [[CkoCert alloc] init];
// Load the certificate on the smartcard currently in the reader (or on the USB token).
// Pass an empty string to allow Chilkat to automatically choose the CSP (Cryptographi Service Provider).
// See Load Certificate on Smartcard for information about explicitly selecting a particular CSP.
success = [cert LoadFromSmartcard: @""];
if (success != YES) {
    NSLog(@"%@",cert.LastErrorText);
    return;
}

// Provide the smartcard PIN.
// If the PIN is not explicitly provided here, the Windows OS should
// display a dialog for the PIN.
cert.SmartCardPin = @"000000";

// Provide the certificate for signing.
success = [crypt SetSigningCert: cert];
if (success != YES) {
    NSLog(@"%@",crypt.LastErrorText);
    return;
}

// Indicate that SHA-256 should be used.
crypt.HashAlgorithm = @"sha256";

// Specify the signed attributes to be included.
// (This is what makes it CAdES-BES compliant.)
CkoJsonObject *jsonSignedAttrs = [[CkoJsonObject alloc] init];
[jsonSignedAttrs UpdateInt: @"contentType" value: [NSNumber numberWithInt: 1]];
[jsonSignedAttrs UpdateInt: @"signingTime" value: [NSNumber numberWithInt: 1]];
[jsonSignedAttrs UpdateInt: @"messageDigest" value: [NSNumber numberWithInt: 1]];
[jsonSignedAttrs UpdateInt: @"signingCertificateV2" value: [NSNumber numberWithInt: 1]];
crypt.SigningAttributes = [jsonSignedAttrs Emit];

NSString *inFile = @"qa_data/xml/IT01234567890_11002.xml";
NSString *sigFile = @"qa_output/IT01234567890_11002.xml.p7m";

// Create the CAdES-BES signature, which contains the original data.
success = [crypt CreateP7M: inFile p7mPath: sigFile];
if (success == NO) {
    NSLog(@"%@",crypt.LastErrorText);
    return;
}

NSLog(@"%@",@"Success.");