OpenSSL "rsautl" Using PKCS#1 v1.5 Padding
What is the PKCS#1 v1.5 padding schema used in OpenSSL "rsautl" command?
PKCS#1 v1.5 padding schema is a padding standard specified in RFC2313 "PKCS #1: RSA Encryption, Version 1.5" proposed by RSA Laboratories in 1998.
PKCS#1 v1.5 padding schema is designed to pad input data to a full encryption block of the same size as the RSA key. The main purpose of PKCS#1 v1.5 padding schema is to improve security level of the RSA algorithm.
PKCS#1 v1.5 padding schema can be summarized as below:
Symbols and abbreviations: D Data (input data to be encrypted) BT Block Type: 0x01 or 0x02 EB Encryption Block k Size (in bytes) of the RSA key PS Padding String of non-0x00 bytes || Binary concatenation operation PKCS#1 v1.5 padding schema: EB = 0x00 || BT || PS || 0x00 || D
Requirements of PKCS#1 v1.5 padding schema:
For example, if you want to use 1024-bit (128-byte) RSA public key to encrypt some input data with PKCS#1 v1.5 padding, a minimum of 11 bytes will be padded in front of the data. So the maximum size of input data is 128 - 11 = 117 bytes.
For more information on PKCS#1 v1.5 padding schema, read RFC2313.
2017-05-12, 349👍, 0💬
How to download the certificate from a root CA? I need to the root CA certificate to close the certi...
How to view the server certificate using the OpenSSL "s_client -connect" command? You can get the se...
How can I use Microsoft "certutil -store" command? What are command options supported by "certutil -...
What options are supported by the "keytool -list" command? Java Keytool can be used to manage certif...
Certificate Summary: Subject: UTN-USERFirst-Object Issuer: UTN-USERFirst-Object Expiration: 2019-07-...