Reputation: 93
How to verify ecdsa-with-SHA256 signature with PHP?
I have encountered the following issue while developing a secure system:
We receive some data which we have to verify by signature. The signature algorithm is ecdsa-with-SHA256, and openssl_verify() doesn't seem to have an option for that. Already tried searching for standalone PHP libraries like phpseclib - no luck either, ecdsa-with-SHA1 is the best option they seem to offer.
What would be an appropriate solution for that issue? Maybe I've missed some library that implements such functionality?
Upvotes: 2
Views: 4127
Answers (1)
Reputation: 1727
PHP's openssl_ currently supports ECDSA only with SHA1 digest (reefer to openssl_get_md_methods() output, position [14]). You'll need a workaround for this. From comments of this question (closed as off topic, by the way), but it was focused on bitcoin implementations.
Upvotes: 3
Related Questions
- Verifying Ethereum (Web3) signed message in PHP
- How Can I Make SHA256withRSA in PHP? How i can know what [signature bytes] in official example?
- Verifying an ECDSA P-384 or P-256 signature with PHP 8
- Verify RSA-SHA256 xml in PHP (Signing in .NET and Verifying in PHP)
- How to create signature using PHP
- How to verify a digital signature with openssl
- PHP: openssl_verify not working with ECDSA keys
- SHA256withRSA sign from PHP verify from JAVA
- How do I verify a DKIM signature in PHP?
- How to verify a signature via PHP that was created on the OpenSSL command line?