EldoS | Feel safer!

Software components for data protection, secure storage and transfer

Invalid Signature Exception with VerifyDetached

Also by EldoS: Solid File System
A virtual file system that offers a feature-rich storage for application documents and data with built-in compression and encryption.
Posted: 09/29/2010 08:07:24
by Filosoft  (Standard support level)
Joined: 05/28/2008
Posts: 12


We are using your Demo to Sign and Verify some data. (Primitive folder inside PKIBlackbox Folder).

The data is signed and the resulting signature is correct when compared to the signature that openssl outupts with the same input data and Private Key.
Then we use your VerifyDetached Demo, with the same input file, the signature output file and the public part of the private key. We get a message "Invalid signature". Assuming that the public key is wrong, we used the private key data as the public key parameter and got the same message.
How can we verify that some signature is valid (or has been created with our private key) using the public key of that same private key ?
Posted: 09/29/2010 08:29:58
by Eugene Mayevski (Team)

1) Please check that the problem can be reproduced on some test data (which you can share with us)
2) submit the file and it's signature to HelpDesk for investigation.

Sincerely yours
Eugene Mayevski
Posted: 09/29/2010 08:48:56
by Eugene Mayevski (Team)

Also please check that the license key is set in the verifying application: some low-level functions don't show error if the license key is not set, yet they produce incorrect result of cryptographic operation.

Sincerely yours
Eugene Mayevski
Posted: 09/29/2010 08:50:26
by Filosoft  (Standard support level)
Joined: 05/28/2008
Posts: 12


It seems like VerifyDetached won't work when signature is base64 encoded.
As we were creating a base64 encoded signature, using it with VerifyDetached without doing a base64 decode would give "Invalid Signature".
Problem solved.
BTW, openssl has the same behaviour, it won't verify a Base64 encoded signature.




Topic viewed 1247 times

Number of guests: 1, registered members: 0, in total hidden: 0


Back to top

As of July 15, 2016 EldoS business operates as a division of /n software, inc. For more information, please read the announcement.

Got it!