Reputation: 137
get x and y components from ecc public key in PEM format using openssl
I am generating a KeyPair for ECC from curve 'secp128r1' using openssl
Steps I followed :
first I generated a private key using the command
openssl ecparam -genkey -name secp128r1 -noout -out private.pem
then i viewed the corresponding public key using the command
openssl ec -in private.pem -text -noout
which showed an output as :
read EC key
Private-Key: (128 bit)
priv:
00:9f:bf:2b:bd:06:86:3a:a1:bc:7c:3e:90:57:40:
f4:bc
pub:
04:04:ce:24:34:d4:cb:f2:58:94:2f:8a:5f:06:d7:
3f:ed:5a:50:ef:fb:cc:b7:49:62:16:62:9e:aa:d5:
30:a8:a5
ASN1 OID: secp128r1
I want explicitly x and y components from the public key generated here, please can anyone suggest the correct way of doing this ?
The above public key is 264 bits long, hence cannot take(/split) it as is
Thanks
Upvotes: 10
Views: 18869
Answers (2)
Reputation: 878
If anyone wants to do this in nodejs, as i did when needing to share public Keys (jwk) for other people/apps to verify my signatures... here is a quick way to derive the X and Y coordinates from an secp256k1 public key:
import base64url from 'base64url';
function getCoordinatesFromSecp256k1PublicKey(uncompressedHexPubKey: string) {
const publicKeyBuff = Buffer.from(uncompressedHexPubKey, 'hex');
const pubKeyCoordsBuff = publicKeyBuff.slice(1); // First byte just signals that it is uncompressed. TRASH!
const halfLen = Buffer.byteLength(pubKeyCoordsBuff) / 2; // should be 32;
const x = pubKeyCoordsBuff.slice(0, halfLen);
const y = pubKeyCoordsBuff.slice(halfLen, Buffer.byteLength(pubKeyCoordsBuff) + 1);
return {
x: base64url.fromBase64(x.toString('base64')),
y: base64url.fromBase64(y.toString('base64'))
};
}
This way you can return your JWK data thusly:
const { x, y } = getCoordinatesFromSecp256k1PublicKey(pubKey);
JSON.stringify(
{
use: 'sig',
kid: 'my-keyid',
alg: 'ECDSA',
kty: 'EC',
crv: 'P-256',
x,
y,
},
null,
2
)
Upvotes: 1
Reputation: 2500
Pub:
04:04:ce:24:34:d4:cb:f2:58:94:2f:8a:5f:06:d7:
3f:ed:5a:50:ef:fb:cc:b7:49:62:16:62:9e:aa:d5:
30:a8:a5
0x04indicates uncompressed form- From what remains:
- X is first half
04:ce:24:34:d4:cb:f2:58:94:2f:8a:5f:06:d7:3f:ed - Y is second half
5a:50:ef:fb:cc:b7:49:62:16:62:9e:aa:d5:30:a8:a5
- X is first half
UPD. Found this website that contains further details.
Upvotes: 18
Related Questions
- How can I get X and Y components from a ECC public key in PEM format without private key?
- How to extract the RSA public key from a .cer and store it in a .pem using OpenSSL?
- How to convert an ECDSA key to PEM format
- how to convert elliptic curve x and y to pem format public certificate
- How do I obtain the public key from an ECDSA private key in OpenSSL?
- How to read an RSA public key from a its PEM format string using the OpenSSL API?
- Extract PEM Public Key from X.509 Certificate
- Read EC public key from .pem file in C
- How to convert an ECDSA key from hex to PEM format
- OpenSSL: print X and Y of EC_POINT