signature=00e3717ebf4d3479c02d1e8e6e919c84,java - RSA signature verification given public exponent a...

最新推荐文章于 2021-05-30 14:44:15 发布
最新推荐文章于 2021-05-30 14:44:15 发布
阅读量196 收藏
点赞数
文章标签: signature=00e3717ebf4d3479c02d1e8e6e919c84

Trying to code signature verification using Sun JCE with test vectors from the CAVP program.

i'm given public key exponent, and modulus, as well as the message and signature. I do the following:

private static boolean verifySignature(String algo, PrintStream oPS, byte[] message, byte[] modulus, byte[] exponent, byte[] sigBytes, int saltlen) throws Exception

{

Signature sig = Signature.getInstance(algo);

KeyFactory keyMaker = KeyFactory.getInstance("RSA");

RSAPublicKeySpec pubKeySpec = new RSAPublicKeySpec(

new BigInteger(modulus),

new BigInteger(exponent));

RSAPublicKey pubKey = (RSAPublicKey)keyMaker.generatePublic(pubKeySpec);

System.out.println("algorithm is " + algo);

sig.initVerify(pubKey);

Utils.outputValue("n", modulus, modulus.length, System.out, false);

Utils.outputValue("e", exponent, exponent.length, System.out, false);

Utils.outputValue("Msg", message, message.length, System.out, false);

Utils.outputValue("S", sigBytes, sigBytes.length, System.out, false);

BigInteger Nvalue = pubKey.getPublicExponent();

Utils.outputValue("key value of n", Nvalue.toByteArray(), System.out, false);

BigInteger Evalue=pubKey.getModulus();

Utils.outputValue("key value of e", Evalue.toByteArray(), System.out, false);

sig.update(message);

if(sig.verify(sigBytes))

oPS.println("Result = P");

else

oPS.println("Result = F");

.

.

.

The algo is something like "SHA1withRSA", and i build the public key as shown. When i list the resulting modulus and exponent from the key itself, they have become reversed.

n = 009de541c71a95389d9e8619ea1d6e2c69ed6c703701e518351676022ab98395d6b35a38b024f92bce6dd1c5be9d51dffd1687d19dceee73f2c73e4436b955231255f6e3e360ba84462311e10e65932fe069bed2d42c5bf2f88141828bdad3796184870cb8cf3019da264e56b39eccf7224d43a1b98d788b40a4042aac790e946f

e = 0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003

Msg = 64b13df4b008ccccd5ce146018481c2568bbe2b93ec658d1c7f4ad734592cd65b3be2be5a7c1be9a7d9f49cbb2ece0cf8ee0a8c406aede84e0121bd51829d6e083862ae5b282d92c19d3923f70616f565a55c2134572116f91a85ff5f4e6ad2e1d31c15c97f3266af19574241c4fd2a4143fb80cc2b9fa7b22df0239a1715c35

S = 5b4458f6aeff91c4699ee9bdf8757987fb8db229814a2992945ac53bcf19b9179e53cfed258726d205107ac000d41e570fe8c4fb321fc9b4b5469c60cd20032195f314ba6e6b0b30a51c9834242daa1ce525ec90380106568e782ea164baeda5d884defe6e720e9dd63618b823412445e17f991a6daa21bd62bdc73d7d8a20e5

key value of n = 03

key value of e = 009de541c71a95389d9e8619ea1d6e2c69ed6c703701e518351676022ab98395d6b35a38b024f92bce6dd1c5be9d51dffd1687d19dceee73f2c73e4436b955231255f6e3e360ba84462311e10e65932fe069bed2d42c5bf2f88141828bdad3796184870cb8cf3019da264e56b39eccf7224d43a1b98d788b40a4042aac790e946f

Some of these tests are supposed to fail, but some should succeed. None verify correctly... Any thought? Thanks.

Application is below, followed by one set of sample input.

package cavp.rsa;

import cavp.*;

import java.io.*;

import java.security.KeyFactory;

import java.security.SecureRandom;

import java.security.Signature;

import java.security.interfaces.RSAPublicKey;

import java.security.spec.RSAPublicKeySpec;

import java.security.PublicKey;

import java.util.Date;

import java.math.BigInteger;

public class RSASigVerify

{

private static boolean verboseFlag=false;

public static void main(String[] args) throws Exception

{

String requestFile;

String responseFile;

int saltLen=-1;

int argstart=0;

if(args.length < 2)

throw new Exception("missing parameters");

if(args.length == 3) {

if(args[0].equals("-saltlen")) {

saltLen=Integer.parseInt(args[1]);

if(saltLen < 0)

throw new Exception("bad -saltlen parameter ");

argstart=2;

} else {

if(args[0].equals("-x931")) {

saltLen=-2;

argstart=1;

}

} else {

if(args.length > 3)

throw new Exception("invalid invocation");

}

requestFile=args[argstart];

responseFile=args[argstart+1];

if(processFile(requestFile, responseFile, saltLen))

System.out.println("Failed to process file " + requestFile);

else

System.out.println("Processing complete for " + requestFile);

}

private static boolean processFile(String rqfn, String rspfn, int saltLen) throws Exception

{

File inFile = new File(rqfn), outFile = new File(rspfn);

if(!inFile.exists() || !inFile.isFile() || !inFile.canRead()) {

System.out.println("Bad input File " + rqfn);

return true;

}

FileReader inFR = new FileReader(inFile);

BufferedReader inBR = new BufferedReader(inFR);

PrintStream outPS = new PrintStream(outFile);

String input, keyword, value, digestType=null;

int p, v, q, i, lnum=0;

byte[] Msg=null, nBytes=null, eBytes=null, sigBytes=null;

boolean msgFound=false, nFound=false, eFound=false, sigFound=false;

try {

while((input = inBR.readLine()) != null ) {

lnum++;

if((p = input.indexOf('=')) < 0) {

outPS.println(input);

continue;

}

if(input.charAt(p-1) == ' ')

keyword=input.substring(0,p-1);

else

keyword=input.substring(0, p);

p++;

for(i=p; i

if(input.charAt(i) == ' ')

p++;

else

break;

}

if((v = input.indexOf('\n')) > 0) {

for(q=v-1; q>p+1; q--) {

if(input.charAt(q) != ' ')

break;

}

} else {

if((v = input.indexOf(' ', p)) > 0) {

q=v-1;

} else {

q=input.length();

}

}

value=input.substring(p,q);

if(keyword.indexOf("n") >= 0) {

nBytes=Utils.hexStringToByteArray(value);

if(nBytes.length <= 0) {

System.out.println("bad value for modulus");

return true;

}

nFound=true;

} else {

if(keyword.equals("e")) {

eBytes=Utils.hexStringToByteArray(value);

if(eBytes.length <= 0) {

System.out.println("bad value for private exponent");

return true;

}

eFound=true;

} else {

if(keyword.equals("SHAAlg")) {

if(!value.equals("SHA1") && !value.equals("SHA224") && !value.equals("SHA256") && !value.equals("SHA384") &&

!value.equals("SHA512")) {

System.out.println("Bad SHAAlg parameter " + input);

return true;

}

digestType=value + "withRSA";

} else {

if(keyword.equals("Msg")) {

if(msgFound) {

System.out.println("more than one Msg found");

return true;

} else

msgFound=true;

String tempMsg;

if((value.length() & 0x01) != 0) {

tempMsg="0" + value;

} else {

tempMsg=value;

}

Msg=Utils.hexStringToByteArray(tempMsg);

if(Msg.length <= 0) {

System.out.println("bad Msg parameter");

return true;

}

} else {

if(keyword.equals("S")) {

sigBytes=Utils.hexStringToByteArray(value);

if(sigBytes.length <= 0) {

System.out.println("bad signature parameter");

return true;

}

sigFound=true;

} else {

if(keyword.equals("Result")) {

continue;

}

}

}

}

}

}

outPS.println(input);

if(digestType != null && msgFound && nFound && eFound && sigFound) {

if(verifySignature(digestType, outPS, Msg, nBytes, eBytes, sigBytes, saltLen)) {

throw new Exception("error in digest generator");

}

msgFound=false;

eFound=false;

sigFound=false;

}

}

} catch( FileNotFoundException e) {

System.out.println("error processing file");

}

inFR.close();

outPS.close();

return false;

}

private static boolean verifySignature(String algo, PrintStream oPS, byte[] message, byte[] modulus, byte[] exponent, byte[] sigBytes, int saltlen) throws Exception

{

// yet to implement saltLen == -2 for X9.31 padding

// saltLen >= 0 for PSS Signatures

Signature sig = Signature.getInstance(algo);

KeyFactory keyMaker = KeyFactory.getInstance("RSA");

RSAPublicKeySpec pubKeySpec = new RSAPublicKeySpec(

new BigInteger(modulus),

new BigInteger(exponent));

RSAPublicKey pubKey = (RSAPublicKey)keyMaker.generatePublic(pubKeySpec);

System.out.println("algorithm is " + algo);

sig.initVerify(pubKey);

sig.update(message);

if(sig.verify(sigBytes))

oPS.println("Result = P");

else

oPS.println("Result = F");

return false;

}

}

The following is one vector from the input:

# CAVS 11.5

# "SigVer PKCS#1 Ver 1.5" information for

# Mod sizes selected: 1024 2048

# SHA Algorithm selected:SHA1 SHA256

# Generated on Mon Nov 28 14:03:58 2011

[mod = 1024]

n = 9de541c71a95389d9e8619ea1d6e2c69ed6c703701e518351676022ab98395d6b35a38b024f92bce6dd1c5be9d>51dffd1687d19dceee73f2c73e4436b955231255f6e3e360ba84462311e10e65932fe069bed2d42c5bf2f88141>828bdad3796184870cb8cf3019da264e56b39eccf7224d43a1b98d788b40a4042aac790e946f

SHAAlg = SHA1

e = 000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000>000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000>0000000000000000000000000000000000000000000000000000000000000000000000000003

Msg = 64b13df4b008ccccd5ce146018481c2568bbe2b93ec658d1c7f4ad734592cd65b3be2be5a7c1be9a7d9f49cbb2>ece0cf8ee0a8c406aede84e0121bd51829d6e083862ae5b282d92c19d3923f70616f565a55c2134572116f91a8>5ff5f4e6ad2e1d31c15c97f3266af19574241c4fd2a4143fb80cc2b9fa7b22df0239a1715c35

S = 5b4458f6aeff91c4699ee9bdf8757987fb8db229814a2992945ac53bcf19b9179e53cfed258726d205107ac000>d41e570fe8c4fb321fc9b4b5469c60cd20032195f314ba6e6b0b30a51c9834242daa1ce525ec90380106568e78>2ea164baeda5d884defe6e720e9dd63618b823412445e17f991a6daa21bd62bdc73d7d8a20e5*

Here is a vector file which should Pass:

# CAVS 11.5

# "SigVer PKCS#1 Ver 1.5" information for

# Mod sizes selected: 1024 2048

# SHA Algorithm selected:SHA1 SHA256

# Generated on Mon Nov 28 14:03:58 2011

[mod = 1024]

n = 9de541c71a95389d9e8619ea1d6e2c69ed6c703701e518351676022ab98395d6b35a38b024f92bce6dd1c5be9d51dffd1687d19dceee73f2c73e4436b955231255f6e3e360ba84462311e10e65932fe069bed2d42c5bf2f88141828bdad3796184870cb8cf3019da264e56b39eccf7224d43a1b98d788b40a4042aac790e946f

SHAAlg = SHA1

e = 0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000011

Msg = fe196459e8232a9f94e8c93d88ddae7d38be7a10e2dd03ffb7bb9be43bd59659eec006b12c78c9e652f6c6d3220073a369459b8adea95eb34ede7979f634c7d931b208275365e201d4f82582b18553b70fab605721e1b6ae4d097cdb8a49183b0d16f22524917bd862176fb1fc1357a2731751df732c13dafc662e72bfbb9067

S = 94af4ce7f323d1bf4904a673d2884e30a55a108c44e4eb2bfc0a0f061f46fefe23fe74c760e947bd1fbf1bb1a30d66b3d7dccfb425d3a6551dd444f90d4f06c3e0da6dc3c7a45e062b08d24553f0091acae47ffaae495e13da66308dd9e0be87e2b960ab823f83e55815b66a1076ab238cc3883cbf7312521d0988214bb07d96

崔一墩
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
华为路由器 HG532e_固件_V100R001C02B015
04-22
华为HG532e固件,升级后可以用LAN1口改为WAN口,将ADSL MODEM改作路由器使用。亲测可用。(操作:在原有管理界面中点“维护” -> “设备” -> “升级”标签,升级后重新进入管理页<登陆密码还是原来的>,在左侧菜单...
signature=e7411d00c74ac359f20083a015dc6ea9,交易 00a7e78a66c34dd926b97570f8be719f0d976c0d89ac3ac200f52c...
weixin_34982726的博客
05-29 6834
00483045022100e22d6cc2d0ccf8c54f562169ee63305a228a99e0fc2385ed2f454ed7b5d9058b02203e09c96745049120a44b6149eb34b4281cf3f767bba578c33a9e6d3b9e5976364147304402206cb32c3e6e461bc11d75521e09575b851b9c6c7f7b...
signature=da8f2b6dc86e0c7f2fb2f1eebccfed6b,yaset/requirements.txt at b6d794886ff8f7f060a9953178237af...
weixin_39622901的博客
05-29 2万+
allennlp==1.1.0 \--hash=sha256:f8351ca4305f8d7c0328a4649dced6d4648276bc1444784e670ac1cde82e80ce \--hash=sha256:9d5bc0e8d5897cd2bbe54a303deb587c79bba3495fb83f0b545d779541372bafatomicwrites==1.4.0; sys_...
计算机电子书 2018 BiliDrive 备份
热门推荐
龙哥盟
12-15 5万+
下载方式 根据你的操作系统下载不同的 BiliDrive 二进制。 执行: bilidrive download <link> 链接 文档 链接 Webpack 中文指南.epub (409.01 KB) bdrive://ce58b7b58292296a61a97de1f89c62b66da24ab6 OpenIntro Statistics 3e.pdf (...
signature=265dc38421eeba29e5d1ad32e1a8f735,Integrity
weixin_29282577的博客
05-29 1万+
IntegrityKeePass can be downloaded from many mirror servers. If you want to verifythe integrity of your downloaded file, you can hash the file(for instance with one of the following utilities:Visual H...
signature=13b3fd5ffb729d3390d717e53f4493f7,Pipfile.lock · 张亚飞/Scrapy+Redis+PostgreSQL 爬取丁香园 - Gitee....
weixin_29407885的博客
05-30 5312
{"_meta": {"hash": {"sha256": "a3da9e690730187f1f586c462e29b83d551a33e3fa7185718aac30c04a687b53"},"pipfile-spec": 6,"requires": {"python_version": "3.6"},"sources": [{"name": "pypi","url": "https://py...
signature=00e3717ebf4d3479c02d1e8e6e919c84,MS12-037:Internet Explorer 的累積安全性更新:2012 年 6 月 12 日...
weixin_35112917的博客
05-29 1万+
Publisher 檔名Sha1SHA2windowsserver2003-kb2699988-x86-enu.exe53324A0E42AEB5DE86E059613D33E3D13FB9686A17C0FB2EF4644670ACB560A93BF79F3EF77A4F35F018498103611A8ADE84668Cwindowsserver2003-kb2699988-x86-ptb.e...
signature=00e3717ebf4d3479c02d1e8e6e919c84,交易 3e4cd8c133021b54a77afda45dbf1e60c93a91e8782c535328bb9b...
weixin_39782832的博客
05-29 2万+
0047304402205b6e4df85094e1d4294c92762c0fa3cb1393f6059753d1f4345681dc75734df5022055dfa97faf612f667c1f1b80b5776dfb6522bda5ad36a5d691241e7951e563f201483045022100b40a06ae1700c08cd38f8c6f887bea514fe6d1f632...
signature=81b02875c0a14a12b6f56e33a90ca14f,lucky-draw/yarn.lock at master · catninelife/lucky-draw ·...
weixin_28759537的博客
05-30 3590
# THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY.# yarn lockfile v1"@babel/code-frame@^7.0.0", "@babel/code-frame@^7.5.5":version "7.5.5"resolved "https://registry.npmjs.org/@babel/code...
HG532e_主机软件_V100R001C02B013_中国__05011ENB.zip
04-12
HG532e_主机软件_V100R001C02B013_中国__05011ENB.zip 升级文件
华为HG532e固件升级2016最新版固件B017
08-14
华为HG532e固件升级2016最新版固件B017-- HG532eV100R001C02B017
Hi3518E V200R001C02SPC041_SDK
12-06
这个.txt文件里面有下载链接,内容是海思SDK开发包,里面分为三个部分,硬件设计 软件设计 和 仅供参考,大家想学习海思技术和使用海思芯片的人才可以研究研究,供以学习。这些资源一般只有海思官方以及对应的供应商...
SAA-C02.pdf
02-24
SAA-C02
pre_o_1csdn63m9a1bs0e1rr51niuu33e.a
05-15
pre_o_1csdn63m9a1bs0e1rr51niuu33e.a
matlab建立计算力学课程的笔记和文件.zip
05-15
matlab建立计算力学课程的笔记和文件.zip
FT-Prog-v3.12.38.643-FTD USB 工作模式设定及eprom读写
05-15
FT_Prog_v3.12.38.643--FTD USB 工作模式设定及eprom读写
matlab基于RRT和人工势场法混合算法的路径规划.zip
05-15
matlab基于RRT和人工势场法混合算法的路径规划.zip
matlab基于matlab的两步定位软件定义接收机的开源GNSS直接位置估计插件模块.zip
05-15
matlab基于matlab的两步定位软件定义接收机的开源GNSS直接位置估计插件模块.zip
office 2016三和一精简版
最新发布
05-15
office 2016三和一精简版
警告:/var/cache/dnf/jenkins-0919f06c02b07800/packages/jenkins-2.401.1-1.1.noarch.rpm: 头V4 RSA/SHA512 Signature, 密钥 ID ef5975ca: NOKEY jenkins-2.401.1-1.1.noarch.rpm 的公钥没有安装 下载的软件包保存在缓存中,直到下次成功执行事务。 您可以通过执行 'dnf clean packages' 删除软件包缓存。 错误:GPG 检查失败
06-13
这个错误提示是因为在安装 Jenkins 的时候,dnf 没有找到 Jenkins 的公钥。您可以尝试添加 Jenkins 的公钥,然后再次尝试安装。 以下是添加 Jenkins 公钥的步骤: 1. 下载 Jenkins 的公钥 在终端中执行以下命令,...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值