OpenSSL "rsautl" Using PKCS#1 v1.5 Padding
What is the PKCS#1 v1.5 padding schema used in OpenSSL "rsautl" command?
PKCS#1 v1.5 padding schema is a padding standard specified in RFC2313 "PKCS #1: RSA Encryption, Version 1.5" proposed by RSA Laboratories in 1998.
PKCS#1 v1.5 padding schema is designed to pad input data to a full encryption block of the same size as the RSA key. The main purpose of PKCS#1 v1.5 padding schema is to improve security level of the RSA algorithm.
PKCS#1 v1.5 padding schema can be summarized as below:
Symbols and abbreviations: D Data (input data to be encrypted) BT Block Type: 0x01 or 0x02 EB Encryption Block k Size (in bytes) of the RSA key PS Padding String of non-0x00 bytes || Binary concatenation operation PKCS#1 v1.5 padding schema: EB = 0x00 || BT || PS || 0x00 || D
Requirements of PKCS#1 v1.5 padding schema:
For example, if you want to use 1024-bit (128-byte) RSA public key to encrypt some input data with PKCS#1 v1.5 padding, a minimum of 11 bytes will be padded in front of the data. So the maximum size of input data is 128 - 11 = 117 bytes.
For more information on PKCS#1 v1.5 padding schema, read RFC2313.
2017-05-12, 649👍, 0💬
How to connect to a HTTPS Web site using OpenSSL? I see the Web sites using the "https:\" format. If...
How to view the server certificate using the OpenSSL "s_client -connect" command? You can get the se...
Certificate summary - Owner: GeoTrust SSL CA, "GeoTrust, Inc.", US Issuer: GeoTrust Global CA, GeoTr...
Where system certificate stores are located on my Windows 7 system? The way Microsoft keeps system c...
Where to click to get more Website information in Google Chrome? I want to know if the page I am int...