jhkwon <[EMAIL PROTECTED]> writes:
> In the following example,
>
> struct {
> uint8 field1;
> uint8 field2;
> digitally-signed opaque hash[20];
> } UserType;
>
> How the hash field is represented?
>
> I've read PKC S#1 signature algorithms, so I understand what the signature
>means.
>
> However,
>
> 1) Does the "digitally-signed" hash data include both the original hash data
>and the signature computed over it ?
>
> Or
>
> 2) Does it include the signature alone?
>
> And in the case of 1), how is it represented?
Just the signature. If you need to carry the data, it must
be carried elsewhere in the message.
In the specification language used by SSL, digitally-signed
data looks like
opaque<1..2^16-1>
-Ekr
--
[Eric Rescorla [EMAIL PROTECTED]]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
