OpenSSL Verify Signed Documents with RSA Keys

Q

What is the process of verifying the signed document with RSA keys using OpenSSL commands? I received a signed document and was to verify it with senders RSA public key.

✍: FYIcenter.com

A

Here are steps your need to follow to verify a signed document with sender's RSA public key using OpenSSL commands:

1. Verify that you received 3 files from the sender: the document file, the signature file and the RSA public key file.

2. Generate a new digest string from the document using the same algorithm used by the sender.

3. Decrypt the old digest string from the signature file using the RSA public key.

4. Compare the new digest string with the old digest string.

5. If digest strings match with each other, the document signature is valid.

5. If digest strings do not match with each other, the document signature is invalid.

The diagram below shows you the document signature verifying process:
OpenSSL Commands to Verify Signed Documents

⇒ OpenSSL "rsautl -verify" - RSA Signature Verification

⇐ OpenSSL "rsautl -sign" - RSA Signature Generation

⇑ OpenSSL "rsautl" Command for RSA Keys

⇑⇑ OpenSSL Tutorials

2017-03-27, 1261👍, 0💬

OpenSSL "rsautl -verify" - RSA Signature Verification
What is the purpose of the OpenSSL "rsautl -verify" command? Can I use it to verify a signed document? Yes, you can use OpenSSL "rsautl -verify" command to verify a signed document. But you need other OpenSSL commands to generate a digest from the document first. For example, you received 3 files as... 2017-03-25, 5427👍, 0💬

OpenSSL "rsautl -encrypt -raw" - Data Too Large Error
Why am I getting the "data too large for key size" error with OpenSSL "rsautl -encrypt -raw" command? My input data is the same size as the RSA key and I am using no padding. In most case, you should be able to use the OpenSSL "rsautl -encrypt -raw" command to encrypt input data of the same size as ... 2017-04-22, 3246👍, 0💬

OpenSSL "rsautl -sign" - RSA Signature Generation
What is the purpose of the OpenSSL "rsautl -sign" command? Can I use it to sign a document? Yes, you can use OpenSSL "rsautl -sign" command to sign a document. But you need other OpenSSL commands to generate a digest from the document first as shown in the following test: C:\Users\fyicenter>d... 2017-04-04, 2787👍, 0💬

OpenSSL "rsautl" Using OAEP Padding
What is the OAEP padding schema used in OpenSSL "rsautl" command? OAEP (Optimal Asymmetric Encryption Padding), also called PKCS#1 2.0, is a padding standard specified in RFC3447 "PKCS #1: RSA Encryption, Version 1.5" proposed by RSA Laboratories in 1998. OAEP padding can be illustrated by the diagr... 2017-04-22, 2635👍, 0💬

OpenSSL "rsautl -encrypt" vs. "rsautl -sign"
What is the difference between "rsautl -encrypt" and "rsautl -sign" commands? There are 2 differences between "rsautl -encrypt" and "rsautl -sign" commands: 1. "rsautl -encrypt" and "rsautl -sign" commands take different RSA keys: "rsautl -encrypt" only accepts an RSA public key and performs RSA enc... 2017-03-25, 2586👍, 0💬

OpenSSL "rsautl -encrypt" vs. "rsautl -verify"
What is the difference between "rsautl -encrypt" and "rsautl -verify" commands? There is only 1 difference between "rsautl -encrypt" and "rsautl -verify" commands: 1. "rsautl -encrypt" and "rsautl -verify" commands apply PKCS#1 v1.5 padding differently: "rsautl -encrypt" adds PKCS#1 v1.5 padding bef... 2017-03-11, 2321👍, 0💬

OpenSSL "rsautl -verify -raw" for RSA Public Key Encryption
2017-03-11, 1515👍, 0💬

OpenSSL "rsautl -sign -raw" for RSA Private Key Decryption
2017-02-28, 1475👍, 0💬

OpenSSL Signing Documents with RSA Keys
What is the process of signing a document with RSA keys using OpenSSL commands? I was told to deliver a document with digital signature. Here are steps your need to follow to sign a document with your RSA private key using OpenSSL commands: 1. Get the document to be signed ready. 2. Generate a diges... 2017-04-04, 1418👍, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.