GPK8000. ----- Original Message ----- From: "Erwann ABALEA" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, March 16, 2001 11:25 PM Subject: Re: How do I construct an instance of RSA using n & e :-) > It seems you're using a GemSafe card, or at least the same cryptoprocessor > as the one used in this card... Am I right? ;-) > > On Sat, 17 Mar 2001, bruce cartland wrote: > > > My thanks to Steve Henson and Steve Reddie, > > > > I have got it working. As I'm working at the ADPU level of the card the > > basic steps are: > > > > 1. use PKCS1 padding and set up RSA struct with n=modules and e=RSA_F4 > > 2. invert the public key modulus stream > > 3. invert the signed data stream > > 4. decrypt > > 5. invert the decrypted data. > > 6. take the first 16 bytes (ie the hash - so stip trailing padding put in by > > card) > > > > Just as well I live in the Land Down Under or my head would be spinning with > > all these inversions :-). > > > > thanks again > > bruce > > ----- Original Message ----- > > From: "Reddie, Steven" <[EMAIL PROTECTED]> > > To: <[EMAIL PROTECTED]> > > Sent: Thursday, March 15, 2001 12:11 PM > > Subject: RE: How do I construct an instance of RSA using n & e > > > > > > > I originally referred to the BN_bin2bn function, not BN_hex2bn. Perhaps > > > BN_hex2bn does require reversing of the bytes. > > > > > > Sounds like you need to run this code in the debugger and step through the > > > RSA_public_decrypt function. At the point where the padding is handled > > > (after the actual decryption) look at the data and see if it's what you > > > expect. If you're getting such padding errors (or 128 bytes of rubbish > > > instead of the expected 16 bytes of data) then chances are you're using > > the > > > wrong key (or a corrupt key, or a byte-reversed key, or something else). > > I > > > repeat that you should be using RSA_PKCS1_PADDING. The padding error that > > > you are getting with this padding type can occur when the wrong decryption > > > key is used. > > > > > > Steven > > > -- > > > Steven Reddie <[EMAIL PROTECTED]> > > > Senior Software Engineer > > > Computer Associates Pty Ltd (Australia) > > > > > > > > > > -----Original Message----- > > > > From: bruce cartland [SMTP:[EMAIL PROTECTED]] > > > > Sent: Thursday, March 15, 2001 4:03 PM > > > > To: [EMAIL PROTECTED] > > > > Subject: Re: How do I construct an instance of RSA using n & e > > > > > > > > I've attached the source (a small C file) I use which has some > > explanation > > > > of what's happening. Perhaps I am setting the exponent incorrectly?? > > > > > > > > thanks > > > > bruce > > > > > > > ______________________________________________________________________ > > > OpenSSL Project http://www.openssl.org > > > User Support Mailing List [EMAIL PROTECTED] > > > Automated List Manager [EMAIL PROTECTED] > > > > > > > ______________________________________________________________________ > > OpenSSL Project http://www.openssl.org > > User Support Mailing List [EMAIL PROTECTED] > > Automated List Manager [EMAIL PROTECTED] > > > > -- > Erwann ABALEA > [EMAIL PROTECTED] > RSA PGP Key ID: 0x2D0EABD5 > ----- > "Computers are useless. They can only give you answers" > - Pablo Picasso > > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] > > ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
