[strongSwan-dev] DER encoded Digital signatures
Sahana Prasad
sahana.prasad07 at gmail.com
Wed Jul 25 11:14:59 CEST 2018
Hello,
We were testing ecdsa with sha384 using digital signature authentication
with Strongswan.
We received 104 bytes (sometimes 102 bytes) of signature value (we were
expecting 97 bytes, equal to the size of the public key in the ecdsa
certificate)
On discussing this on IRC, I was told that this overhead is due to DER
encoding.
Tried to look for an RFC that mentions this. Could not find it in RFC 7427
or section 2.15 of RFC 7296.
https://tools.ietf.org/html/rfc5280#section-4.1.1.2 talks about it, but it
is for certificates
Can you help me by pointing out to the reference RFC that mentions how the
signature should be encoded? and how it is implemented?
Is the DER encoding scheme also employed for RSA?
Thank you for your help in advance,
Regards,
Sahana Prasad
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/dev/attachments/20180725/071aaab6/attachment.html>
More information about the Dev
mailing list