On Mon, May 30, 2005, Suram Chandra Sekhar wrote: > Hi all, > I want to know the sequence for signing and verifying a piece of data as > per PKCS1 v2.0 specification using signature algorithm identifier as SHA1 > using openssl v 0.9.7c. > My understanding is that RSA_sign uses the PKCS1v2.1 specification. > > Awaiting your valuable response.. >
There are two signature schemes in PKCS#1 v2.1. RSASSA-PKCS1-V1_5 is supported by RSA_sign() with details in the relevant manual pages. RSASSA-PSS is *not* supported by RSA_sign(). A prototype version of PSS padding code has appeared in the last 0.9.7-stable snapshots but these are not integrated into RSA_sign() and probably never will be in the 0.9.7 tree because various changes to the underlying structures would be needed. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
