[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
SIGNATURE in spki-960705.txt
SIGNATURE: <hash alg>,<PK alg>,<sig value>,<body hash>
might need an additional parameter to indicate padding mechanism, at least
for RSA. I usually have the hash in the least significant bytes of the
encrypted quantity with all padding and structure in more significant bytes
irrelevant to the verifier -- and as a signer, I usually fill those with
random bytes. However, I can imagine someone wanting to do funny encoding.
For example, it might be more secure (worthwhile?) to encode the <hash alg>,
<PK alg> and <body hash> together in the sig block -- e.g., concatenating
them, if it's a large block (like RSA) or XORing them if it's a small block
(like DSA).
What do y'all think?
- Carl
+--------------------------------------------------------------------------+
|Carl M. Ellison cme@cybercash.com http://www.clark.net/pub/cme |
|CyberCash, Inc. http://www.cybercash.com/ |
|207 Grindall Street PGP 2.6.2: 61E2DE7FCB9D7984E9C8048BA63221A2 |
|Baltimore MD 21230-4103 T:(410) 727-4288 F:(410)727-4293 |
+--------------------------------------------------------------------------+