Reputation: 103
How do I decrypt and verify a signature signed with SHA256withRSA standard?
So the problem I'm facing is that I'm making a request to a server, and the server is responding via webhooks -> this notification can take a while to come back. This is why every time I get a response, I need to verify the signature sent in the response authentication header.
They say that they produce the signature with: sign(apikey + nonce + timestamp + transactionid)
Now, obviously I have the apikey, but I don't have the timestamp, nonce and transactionId to verify if the signature is correct. I don't understand, is it even solvable then?
Anyway, they say that they use the SHA256withRSA (OID: 1.2.840.113549.1.1.11) standard to sign it, therefore I have to use the same thing to decrypt it. They have given me their string public key and nothing else (no certificate). The public key is in the form:
-----BEGIN PUBLIC KEY-----
<public key>
-----END PUBLIC KEY-----
I haven't found any out of the box solutions in C# for this problem, as I can't just use RSA. What can I do to decrypt their signature and verify that it's really them?
Upvotes: 1
Views: 2208
Answers (1)
Reputation: 93968
The data should contain the artifacts you are looking for. A signature doesn't encrypt the data, instead it is usually attached (commonly appended) to the data. Although the data is not encrypted (by the signature generation process), it could of course have been encoded which means you may have to decode the data first (e.g. base 64). The signature is then over a canonical binary representation of the data.
So in general, to verify a signature:
- decode and aggregate the data
- decode the signature
- make the correct binary representation of the data
- hash the binary representation (normally part of the signature verification function such as
"SHA256withRSA") and finally - verify the signature.
Besides verification of the signature you may need to perform validation of the signature as well. Generally validation of the signature consists of things such as:
- verification that the nonce hasn't been used before (protection against replay attacks);
- verification that the timestamp is within a certain range.
But if possible you should let a library take care of this. Do check however that the verification does indeed take place and that the validation checks are useful and that they have been performed.
If PEM is used (like it is for the public key you've shown) it may be that the data and signature are buried using CMS (cryptographic message syntax). This is a binary container format. If this is true then you definitely need a CMS library as parsing the message structure requires a lot of knowledge and practice.
Upvotes: 4
Related Questions
- How to do signature using SHA256withRSA algorithm in C#
- Decrypt from SHA256
- Signing SHAKE256 hash with RSA signature with further validation
- Verify SignatureValue And DigestValue Using Sha256 RSA
- How to sign a string with rsa-sha256 by using private key?
- C# signature verification using ECDSA with SHA256 certificate
- Verify RSA SHA256 signature in C#
- How to verify the signature of a response using a public key with RSAwithSHA256 in C#?
- Verify signature generated with RSA 2048-bit key, SHA256 algorithm and PKCSv1.5 padding
- C# SignatureDescription for SHA256