OpenSSL "rsautl" Using PKCS#1 v1.5 Padding
What is the PKCS#1 v1.5 padding schema used in OpenSSL "rsautl" command?
PKCS#1 v1.5 padding schema is a padding standard specified in RFC2313 "PKCS #1: RSA Encryption, Version 1.5" proposed by RSA Laboratories in 1998.
PKCS#1 v1.5 padding schema is designed to pad input data to a full encryption block of the same size as the RSA key. The main purpose of PKCS#1 v1.5 padding schema is to improve security level of the RSA algorithm.
PKCS#1 v1.5 padding schema can be summarized as below:
Symbols and abbreviations: D Data (input data to be encrypted) BT Block Type: 0x01 or 0x02 EB Encryption Block k Size (in bytes) of the RSA key PS Padding String of non-0x00 bytes || Binary concatenation operation PKCS#1 v1.5 padding schema: EB = 0x00 || BT || PS || 0x00 || D
Requirements of PKCS#1 v1.5 padding schema:
For example, if you want to use 1024-bit (128-byte) RSA public key to encrypt some input data with PKCS#1 v1.5 padding, a minimum of 11 bytes will be padded in front of the data. So the maximum size of input data is 128 - 11 = 117 bytes.
For more information on PKCS#1 v1.5 padding schema, read RFC2313.
2017-05-12, 1002👍, 0💬
Certificate summary - Owner: Baltimore CyberTrust Root, CyberTrust, Baltimore, IE Issuer: GTE CyberT...
What options are supported by the "keytool -list" command? Java Keytool can be used to manage certif...
How to convert a certificate file in DER (Distinguished Encoding Rules) format to PEM (Privacy Enhan...
How to use the "keytool -list" command? I want to see what in the keystore file. Here is an example ...
How to create a test certificate for myself and put it into "My - Personal" system certificate store...