Hello Jakob, On 12.10.2011 22:21, Jakob Bohm wrote:
>> I know that to sign, i have to take a hash of some document or message but, >> theoretically, i could encrypt any document? The padding scheme would shrink >> the message and them could reveal the same message after deciphering? > The padding scheme would grow the message to fill out the key size. > > Putting the message directly into the padding scheme is only safe for some > RSA padding schemes, as some padding schemes are safe only if the message > is a completely random bit string not known to the enemy (secret encryption > keys > are usually such strings, actual messages are usually not). > Can you elaborate on which paddings should only be used with pure random data and which can be used for arbitrary data? Thanks for your good explanations Dirk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
