Jakob Bohm writes:
[...]
> I did mention that in passing under my item 2 (where I mentioned use
> of 192-bit-truncated-SHA-224 as one allowed 192 bit hash algorithm for
> use with ECDSA-192).
OK, sorry, I missed that.
> I don't remember if the current FIPS-180 actually allows truncating to
> (
On 10/18/2011 2:18 PM, Bruce Stephens wrote:
Jakob Bohm writes:
[...]
As explained above, 192 bit DSA and ECDSA only works with 192 bit
hashes (and only one hash algorithm is allowed for each private/public
key pair).
You can use larger digests (SHA-512, for example), but the digest will
be
Jakob Bohm writes:
[...]
> As explained above, 192 bit DSA and ECDSA only works with 192 bit
> hashes (and only one hash algorithm is allowed for each private/public
> key pair).
You can use larger digests (SHA-512, for example), but the digest will
be truncated before processing with ECDSA (or
Thanks,
On 14.10.2011 13:16, Jakob Bohm wrote:
>>
> Unfortunately not, I am a security engineer, not a fully trained
> cryptographer/cryptanalyst.
>
> As an engineer I am aware that attacking an algorithm such as RSA is easier
> the
> more the
> attacker knows or can control about the input, an
On 10/13/2011 7:17 PM, Dirk Menstermann wrote:
Hello Jakob,
On 12.10.2011 22:21, Jakob Bohm wrote:
I know that to sign, i have to take a hash of some document or message but,
theoretically, i could encrypt any document? The padding scheme would shrink
the message and them could reveal the same
Hello Jakob,
On 12.10.2011 22:21, Jakob Bohm wrote:
>> I know that to sign, i have to take a hash of some document or message but,
>> theoretically, i could encrypt any document? The padding scheme would shrink
>> the message and them could reveal the same message after deciphering?
> The padding
On 10/8/2011 3:39 PM, Rick Lopes de Souza wrote:
Hi all,
This week i was in doubt to implemment some methods to sign using
OpenSSL. I know that RSA needs the hash algorithm to do the padding
scheme and ECDSA doesn't need.
ECDSA (and regular DSA) on the other hand needs a hash scheme satisfying
On Sat, Oct 8, 2011 at 6:39 AM, Rick Lopes de Souza
wrote:
> Another thing that i know is that RSA can only sign things that are smaller
> than the size of the key used.
No - you can sign a message of arbitrary length - a suitable message
digest is what is encrypted (well, decrypted) in the RSA
Hi all,
This week i was in doubt to implemment some methods to sign using OpenSSL. I
know that RSA needs the hash algorithm to do the padding scheme and ECDSA
doesn't need.
Another thing that i know is that RSA can only sign things that are smaller
than the size of the key used. I can imagine that