Categories:
Android (13)
Apple Mac (27)
DH Keys (39)
DSA Keys (83)
EC Keys (2389)
Firefox (30)
General (10)
Google Chrome (25)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
OpenSSL (236)
Other (7)
Portecle (38)
Publishers (6528)
Revoked Certificates (16)
Root CA (85)
RSA Keys (5269)
Tools (46)
Tutorial (1)
What Is (22)
Windows (127)
Collections:
Other Resources:
OpenSSL "rsautl -verify" - RSA Signature Verification
What is the purpose of the OpenSSL "rsautl -verify" command? Can I use it to verify a signed document?
✍: FYIcenter.com
Yes, you can use OpenSSL "rsautl -verify" command to verify a signed document. But you need other OpenSSL commands to generate a digest from the document first.
For example, you received 3 files as part of a "signed" document: notepad.exe, sha1_signed.dgt, and my_rsa_pub.key, you can the following OpenSSL commands to verify the signature:
C:\Users\fyicenter>\local\openssl\openssl.exe OpenSSL> dgst -sha1 -binary -out sha1.dgt \windows\system32\notepad.exe OpenSSL> rsautl -verify -pubin -inkey my_rsa_pub.key -in sha1_signed.dgt -out sha1_decrypted.dgt OpenSSL> exit C:\Users\fyicenter>comp sha1.dgt sha1_decrypted.dgt Comparing sha1.dgt and sha1_decrypted.dgt... Files compare OK
Commands used in this test are:
Since the two digests are identical, the digital signature is valid.
⇒ OpenSSL "rsautl -encrypt" vs. "rsautl -sign"
⇐ OpenSSL Verify Signed Documents with RSA Keys
2017-03-25, 11456👍, 0💬
Popular Posts:
Certificate summary - Owner: www.chronoengine.com, Domain Control Validated Issuer: GlobalSign Domai...
Certificate summary - Owner: www.fedex.com, EIS-WSAS, FedEx Corporation, STREET=942 S Shady Grove Rd...
Where to find answers to frequently asked questions on Certificates on Android Devices? Here is a li...
Certificate summary - Owner: *.bing.com Issuer: MSIT Machine Auth CA 2, Dredmond, Dcorp, Dmicrosoft,...
Certificate Summary: Subject: Symantec Class 3 EV SSL CA - G3 Issuer: VeriSign Class 3 Public Primar...