Reputation: 5064
Can SubtleCrypto.verify() use a digest instead of the original message?
https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto/verify
Algorithms like ES224, ES256, ES384, and ES512 are designed for use with digests, however, Javascript does not appear to support this design and instead requires the full original message. Existing applications may require this feature and idiomatically use these algorithms as intentionally permitted by design.
Also, this is a problem for performance. For example, a digest may represent a 1 GB file and verifying a 256 bit digest is better for performance than re-hashing a 1 GB file.
Go and other languages use digests for verification. This expectation is not outside of industry norms.
Is there a work around the SubtleCrypto restriction of requiring the full original message, without resorting to an external library like noble-curves?
Upvotes: 0
Views: 102
Answers (1)
Reputation: 5064
No. SubtleCrypto does not allow digests to be used, so you have to use an external library like noble-curves.
Upvotes: 0
Related Questions
- ESP ethernet and wifi
- WiFi.h with esp32
- Programming esp32 and esp8266
- ESP32 WiFi connection VERY intermittent
- ESP8266 Micropython - connecting to University Wi-fi ( WPA2 Enterprise PEAP )
- Custom Micropython firmware for ESP8266
- Implementing Wi-Fi Direct for ESP32
- Esp32 wlan connection with micropython doesnt work
- ESP32 : Error when activating Wi-Fi interface
- Can I use micropython in NodeMcu ?(model name: CH340 Lua WIFI)