Jump to content

openssl signature verification using SHA256withRSA.

bhargava

By bhargava
in Other Web Server Software

 Share

Recommended Posts

bhargava Newbie

bhargava

Posted
Posted

Hi,

I am using php openssl for verifying the signatures. My usecase is like this:

 

1. I want to send notifications to my clients (web servers). Naturally, I do a POST. As I want security, I am also sending a signature (will explain what kind later) in the POST request.

2. Client will have to verify the signature that request indeed came from me and was not tampered.

 

Now for signature,

1. I am signing request parameters using private key of x509 certificate.

2. I will publish a public key certificate for the client which she uses to verify the signature i sent.

 

So far so good? Now the problem : From my side I am using algorithm 'SHA256withRSA' (in Java) for signature generation. But my client is using PHP? I don't see anyplace when openssl supports this algorithm I could only find SHA1_WITH_RSA.

 

Is there any way, I can verify the SHA256withRSA signature? perhaps a different library or some hidden openssl gotcha

 

btw, i got it working with sha1withRSA, but i want SHA256withRSA .....

This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.