users] RE: RSA-SHA1 Digest
Bonjour,
Hodie pr. Non. Mar. MMVII est, WCR scripsit:
> Your comments have been very helpful.
> I've had a look at the SOAP/XMLDSIG documentation and realise, as you
> suggested that I must normalize / canonicalize the data between the tags
> and bef
Bonjour,
Hodie pr. Non. Mar. MMVII est, WCR scripsit:
> Your comments have been very helpful.
> I've had a look at the SOAP/XMLDSIG documentation and realise, as you
> suggested that I must normalize / canonicalize the data between the tags
> and before digesting.
>
> Do you know of any utiliti
ly up and I'm in trouble.
Regards
David
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Goetz Babin-Ebell
Sent: 05 March 2007 17:47
To: openssl-users@openssl.org
Subject: Re: RSA-SHA1 Digest
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello David,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello David,
WCR wrote:
> I'm beginning to get this now, but I still have a problem :-((
>
> How do I obtain this result
> sXD2SsGQxI7DDFMwHwONxjGOaoI=
> from the data object in the soap envelope?
For that you have to study the SOAP / XMLDSIG documen
TECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Julius Davies
Sent: 27 February 2007 17:37
To: openssl-users@openssl.org
Subject: Re: RSA-SHA1 Digest
If you take the data inside here and base64 decode it, you end up with 20
bytes.
sXD2SsGQxI7DDFMwHwONxjGOaoI=
$ echo 'sXD2SsGQxI7DDFMwHw
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello David,
WCR wrote:
> also Goetz,
>
>> Doing digest and sign in two steps is very unusual.
>> Usually you process the digest and generate the signature
>> in one step.
>
> Unfortunately, I think I do need both the digest and the signature to stu
osts.
Thank you both for your patience.
David
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Julius Davies
Sent: 26 February 2007 22:30
To: openssl-users@openssl.org
Subject: Re: RSA-SHA1 Digest
I think I finally understand. This isn't 28 bytes:
sXD2S
2007 22:30
To: openssl-users@openssl.org
Subject: Re: RSA-SHA1 Digest
I think I finally understand. This isn't 28 bytes:
sXD2SsGQxI7DDFMwHwONxjGOaoI=
That's 20 bytes of base64 encoded bytes.
So you really are using sha1.
yours,
Julius
On 2/26/07, Goetz Babin-Ebell &
I think I finally understand. This isn't 28 bytes:
sXD2SsGQxI7DDFMwHwONxjGOaoI=
That's 20 bytes of base64 encoded bytes.
So you really are using sha1.
yours,
Julius
On 2/26/07, Goetz Babin-Ebell <[EMAIL PROTECTED]> wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello David,
WCR
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello David,
WCR wrote:
> Julius
>
> You're probably pointing me in the right direction.
Not really.
> I tried "openssl dgst -sha224" and yes I got a 56byte hex string / 28byte
> character string. My problem now is I can't use it in my xml message b
ot; the output is 40bytes.
Is there another step I need to take to get a valid string?
Thank you for your time.
David
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Julius Davies
Sent: 26 February 2007 13:54
To: openssl-users@openssl.org
Subject: Re: RSA-SHA
The 40 bytes you're seeing might actually be 20 bytes:
9699dc843a1608b4
That's 8 bytes, not 16.
If all the examples you've seen produce 28 byte digests, they are
probably using sha224.
$ echo "28 * 8" | bc
224
:-)
Try using "openssl dgst -sha224" instead of sha1.
yours,
Julius
On 2/26/
ytes.
I must be missing something or perhaps I need a holiday.
Any suggestions, even holiday ones, would be appreciated :-)
David
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Julius Davies
Sent: 25 February 2007 20:56
To: openssl-users@openssl.org
Hi, David,
I don't quite understand. Are you trying sign something? If you're
trying to sign something, then it looks like this (please excuse my
pseudo-code!):
byte[] twentyBytes = sha1( input );
byte[] signature = rsaEncrypt( privateKey, twentyBytes );
In other words, you can use RSA to enc
14 matches
Mail list logo
