Dear all, I have been digging a bit into the OpenSC and OpenSSL code
because I have a doubt.
Using keys on smart cards via the OpenSC engine, I am almost sure that
by producing a PKCS7 the signature is of type "sha1WithRSAEncryption"
(at least without any special options), that implies using specific
kinds of padding for the digest before the RSA encryption, for instance.
The signature in the PKCS7, though, is marked as an object of type
"rsaEncryption" (can tell with the asn1parse command).
Is it correct to say that they are are the same, or, better, that
1) "rsaEncryption" includes the "sha1WithRSAEncryption" type
2) "sha1WithRSAEncryption" is what the PKCS7 API does by default?
(I know, this is rather an OpenSSL-related question)
Do you think that specifying better would be an advantage?
Otherwise, if "sha1WithRSAEncryption" is not included in
"rsaEncryption", which is the actual difference when signing with smart
cards and engine_pkcs#11?
Thanks
_______________________________________________
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-devel
