RSA_verify calls RSA_public_decrypt to do the actual decryption. The padding aspects of each are the same. The difference in PKCS#1 padding is between RSA_public_encrypt/RSA_private_decrypt and RSA_private_encrypt/RSA_public_decrypt. The pair used for signatures use a form of padding that doesn't change each time it is applied (each byte is 0xff). The other pair use a form of padding that includes randomly generated padding bytes and therefore does change each time it is applied.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Suram Chandra Sekhar Sent: Friday, 26 August 2005 7:47 PM To: openssl-users@openssl.org Subject: Compatibility between RSA_sign and RSA_public_decrypt Hi all, I understand that RSA_sign() uses PKCS#1v1.5 padding for signing. If I sign using RSA_sign, can this signature be verified using RSA_public_decrypt() which uses PKCS#1 v1.0. In other words is it possible to have compatibility between these two versions. Awaiting your valuable response.. Regards Suram ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
