EldoS | Feel safer!

Software components for data protection, secure storage and transfer

RSA-PSS signing

Also by EldoS: BizCrypto
Components for BizTalk® and SQL Server® Integration Services that let you securely store and transfer information in your business automation solutions.
#1634
Posted: 11/08/2006 04:59:01
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

Hi,

If using UsePSS when signing and specifying a hash algorithm different than SHA1 gives error #200D while verifying. I've read http://islab.oregonstate.edu/koc/ece575/rsalabs/rsa-pss.pdf and it doesn't says that PSS should be used only with SHA1.

Have you tested it (i.e.: PSS+SHA512)?
#1635
Posted: 11/08/2006 05:11:48
by Mykola Olshevsky (Basic support level)
Joined: 07/07/2005
Posts: 450

Hi.
Which code exactly are you using?
And do you provide correct digest algorithm for the verifying side?
#1636
Posted: 11/08/2006 05:50:32
by Santiago Castaño (Standard support level)
Joined: 04/16/2006
Posts: 155

Ummm, i can't understand you.

I'm using on the sign side: FirmadorT.Sign(FromF,ToF,False) (before i set the hashalgorithm property, and UsePSS and mstPublicKey). IncludeCertificates=True.

On the verifier side, i simply do a .verify the stream. No algorithm is supposed to be provided in the verification side :?; verifier side is supossed to return me the algorithm used in sign side; UsePSS is read only as is normal :p.
#1639
Posted: 11/08/2006 11:48:32
by Mykola Olshevsky (Basic support level)
Joined: 07/07/2005
Posts: 450

Hi again.
Sorry, my assumption about reason of error was not correct.
The error really was in SBB code, and now it's fixed.
Thank you for pointing us at this issue.

Changes will be included in the next build, but if you need them now - open ticket in helpdesk, and we will upload updated source files there.

Reply

Statistics

Topic viewed 2271 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!