OpenSSL "rsautl -oaep" - OAEP Padding Option

Q

How to use OAEP padding with OpenSSL "rsautl" command? I was told to encrypt a password using an RSA public key with OAEP padding.

✍: FYIcenter.com

A

OpenSSL "rsautl" uses PKCS#1 v1.5 padding as the default padding schema. So if you want to use OAEP padding, you have to using the "-oaep" option as shown below:

C:\Users\fyicenter>type test.txt
abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ

C:\Users\fyicenter>\local\openssl\openssl.exe

OpenSSL> rsautl -encrypt -pubin -inkey my_rsa_pub.key -in test.txt 
   -out cipher.txt -oaep

OpenSSL> rsautl -decrypt -inkey my_rsa.key -in cipher.txt 
   -out decipher.txt -oaep

OpenSSL> exit

C:\Users\fyicenter>type decipher.txt
abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ

Note that the "-oaep" padding option is needed to decrypt the cipher text, if the clear text was padded using the OAEP padding schema. This is to undo what the OAEP padding did to the clear text.

If you want to see what the OAEP padding did to the clear text, you can use the "rsautl -decrypt -raw -hexdump" command to keep whatever OAEP padding did to the clear text:

C:\Users\fyicenter>\local\openssl\openssl.exe
   
OpenSSL> rsautl -decrypt -inkey my_rsa.key -in cipher.txt -raw -hexdump
0000 - 00 4c 6b e6 bb a0 9e 89-22 e0 a2 53 f9 a1 bb 7d   .Lk....."..S...}
0010 - bb 95 4a 77 e3 5b 95 c9-a1 74 7e 4d ed 8c 1a 56   ..Jw.[...t~M...V
0020 - 9d 61 10 0f 23 02 5a 97-5a 60 af 4f 0f 13 5c 7b   .a..#.Z.Z`.O..\{
0030 - 22 77 49 45 b0 bd af 0a-d1 71 03 be 44 ea 4e c3   "wIE.....q..D.N.
0040 - 6d 75 84 d0 24 e3 ff 6a-73 a1 fc 84 52 0a b1 34   mu..$..js...R..4
0050 - 4b 94 44 bf 5c 07 1b 79-e8 82 8d 74 59 1e 4a 0d   K.D.\..y...tY.J.
0060 - af 3a 65 a2 2e 15 ea e1-2b b1 d4 55 31 7a bb 7f   .:e.....+..U1z..
0070 - fe a6 8b 2b 65 17 ff 19-ac e4 76 67 16 aa 4c 43   ...+e.....vg..LC

The output confirms that OAEP padding is not a simple padding schema of just inserting bytes to the clear text.

⇒ OpenSSL Signing Documents with RSA Keys

⇐ OpenSSL "rsautl" Using OAEP Padding

⇑ OpenSSL "rsautl" Command for RSA Keys

⇑⇑ OpenSSL Tutorials

2017-04-15, 13470👍, 0💬

OpenSSL "rsautl -pkcs" - PKCS#1 v1.5 Padding Option
How to use RSA PKCS#1 v1.5 padding with OpenSSL "rsautl" command? I was told to encrypt a password using an RSA public key with PKCS#1 padding. OpenSSL "rsautl" uses PKCS#1 v1.5 padding as the default padding schema. But you can explicitly specify PKCS#1 v1.5 padding by using the "-pkcs" option as s... 2017-05-12, 10797👍, 0💬

OpenSSL "rsautl -verify" - RSA Signature Verification
What is the purpose of the OpenSSL "rsautl -verify" command? Can I use it to verify a signed document? Yes, you can use OpenSSL "rsautl -verify" command to verify a signed document. But you need other OpenSSL commands to generate a digest from the document first. For example, you received 3 files as... 2017-03-25, 10780👍, 0💬

OpenSSL "rsautl -encrypt -raw" - No Padding
Can I use OpenSSL "rsautl" command to encrypt data without any padding? Yes, you can encrypt data without any padding using the OpenSSL "rsautl -encrypt -raw" command. But you need to remember the following: No padding requires the input data to be the same size as the RSA key. No padding requires t... 2017-04-28, 8614👍, 0💬

OpenSSL "rsautl -sign" - RSA Signature Generation
What is the purpose of the OpenSSL "rsautl -sign" command? Can I use it to sign a document? Yes, you can use OpenSSL "rsautl -sign" command to sign a document. But you need other OpenSSL commands to generate a digest from the document first as shown in the following test: C:\Users\fyicenter>d... 2017-04-04, 7853👍, 0💬

OpenSSL "rsautl -encrypt -raw" - Data Too Large Error
Why am I getting the "data too large for key size" error with OpenSSL "rsautl -encrypt -raw" command? My input data is the same size as the RSA key and I am using no padding. In most case, you should be able to use the OpenSSL "rsautl -encrypt -raw" command to encrypt input data of the same size as ... 2017-04-22, 4955👍, 0💬

OpenSSL "rsautl" Using OAEP Padding
What is the OAEP padding schema used in OpenSSL "rsautl" command? OAEP (Optimal Asymmetric Encryption Padding), also called PKCS#1 2.0, is a padding standard specified in RFC3447 "PKCS #1: RSA Encryption, Version 1.5" proposed by RSA Laboratories in 1998. OAEP padding can be illustrated by the diagr... 2017-04-22, 4472👍, 0💬

OpenSSL "rsautl -encrypt" vs. "rsautl -sign"
What is the difference between "rsautl -encrypt" and "rsautl -sign" commands? There are 2 differences between "rsautl -encrypt" and "rsautl -sign" commands: 1. "rsautl -encrypt" and "rsautl -sign" commands take different RSA keys: "rsautl -encrypt" only accepts an RSA public key and performs RSA enc... 2017-03-25, 4413👍, 0💬

OpenSSL "rsautl" - PKCS#1 v1.5 Padding Size
Whet is the PKCS#1 v1.5 padding size with OpenSSL "rsautl -encrypt" command? I want to know the largest size of data that I can encrypt with my RSA key. The minimum padding size of PKCS#1 v1.5 padding schema is 11 bytes which contains at least 8 bytes of random string. So if you are using the "-pkcs... 2017-04-28, 3538👍, 0💬

OpenSSL Signing Documents with RSA Keys
What is the process of signing a document with RSA keys using OpenSSL commands? I was told to deliver a document with digital signature. Here are steps your need to follow to sign a document with your RSA private key using OpenSSL commands: 1. Get the document to be signed ready. 2. Generate a diges... 2017-04-04, 2450👍, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.