saeid ezzati
Reputation: 249
how make signature by private key and check it by public key in php
I have a RSA private key and a RSA public key.
both rsa keys are in xml version ( <RSAKeyValue><Modulus>.... );
I need to make a PKCS8 signature from private key and test it by publik key in php
I used this snippet for making signature:
$content = "test string";
include('Crypt/RSA.php');
$rsa = new Crypt_RSA();
$rsa->loadKey(file_get_contents("private.txt"));
$pem_format = $rsa->getPrivateKey();
$pvk_res = openssl_get_privatekey($pem_format);
$sig = '';
openssl_sign($content , $sig, $pvk_res, OPENSSL_ALGO_SHA1);
$signature = base64_encode($sig);
is this right way for making signature ??
now how use public key to test accuracy of signature ??
Upvotes: 0
Views: 3764
Answers (1)
neubert
Reputation: 16782
PKCS8 concerns key formats - not signatures.
Also, I see you're using phpseclib to convert the key to pem and then using openssl. Why not just use phpseclib for everything? At that point you could use this example:
http://phpseclib.sourceforge.net/rsa/examples.html#sign,sign2
<?php
include('Crypt/RSA.php');
$rsa = new Crypt_RSA();
//$rsa->setPassword('password');
$rsa->loadKey('...'); // private key
$plaintext = '...';
$rsa->setSignatureMode(CRYPT_RSA_SIGNATURE_PKCS1);
$signature = $rsa->sign($plaintext);
$rsa->loadKey('...'); // public key
echo $rsa->verify($plaintext, $signature) ? 'verified' : 'unverified';
?>
Upvotes: 1
Related Questions
- How to create signature using SHA256WithRSA and PKCS#8 in PHP
- How to digitally Sign data using p8 form private key in PHP and Verify it using Public key
- Verify signature of Private key by Public key between Sender and Receiver in PHP
- How to sign some data using public/private RSA key?
- How to create signature using PHP
- How to use a PKCS8 Encoded Private Key in PHP
- How to verify that a public key belongs to private key?
- PHP validate client signature using client public key
- signing using RSA public key algorithm
- Digitally sign in PHP using private key, verify in C#