I spoke too soon. So I generated a new cert with openssl with the RSAPSS scheme. Windows shows the certificate information correctly with subject, not before, not after, etc. correctly. However, with PEM_Load it fails with BER decode error. Does PEM_Load not support this or is there additional configuration to do before it can load it in properly?
Thanks, Frank On Monday, April 15, 2024 at 9:18:44 AM UTC-4 Frank Sapone wrote: > NVM, it appears PSSR is considered more secure and this should work with > the verifier. > > Thanks, > Frank > > On Friday, April 12, 2024 at 12:20:56 PM UTC-4 Jeffrey Walton wrote: > >> On Friday, April 12, 2024 at 12:19:32 PM UTC-4 [email protected] >> wrote: >> >> Hello, I am using Windows 10 Professional x64 with CryptoPP 8.9.0. It is >> built with Visual Studio. We started using SonarQube/SonarLint for SCA >> during compile and it's been complaining "Use a stronger padding scheme". >> Specifically it sees this line: >> >> RSASS<PKCS1v15, SHA256>::Verifier verifier(publicKey); >> >> and complains about the PCKS1v15. I don't know how to change it to a >> different type and what other ones are available. It suggests OAEP for RSA >> which is what I assume we want. >> >> >> https://www.cryptopp.com/wiki/RSA_Encryption_Schemes >> >> Jeff >> > -- You received this message because you are subscribed to the Google Groups "Crypto++ Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/cryptopp-users/2ed3760e-7056-4335-b162-86742e6db772n%40googlegroups.com.
