Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
A certificate’s signature can use different RSA padding schemes like PCKS1.5 , PSS etc. Using openssl tool, how to identify padding scheme used in the RSA signature?
You can use the following command (assuming the certificate is encoded in DER – binary format):
Right after the serial number you find the signature algorithm encoded as a string like
sha1WithRSAEncryption.You can look up such string in the PKCS#1 RFC or in the other RFCs that extend the definition (like RFC4055).
For RSA, an identifier like
XXXwithRSAEncryptionindicates a PKCS#1 v1.5 signature.The identifier
id-RSASSA-PSSspecififies a PSS signature, and the other details are stored in the other parameters that show up alogn with it.