Dear all,
I have to sign a message with a private key using the sha1 with RSA using the Java JCE(Bouncy Castle engine) on System A. I then have to pass the public key, the original message and the signature to System B which uses OpenSSL to verify the signature. At the openSSL end, I use: openssl dgst -sha1 -verify pubkey.pem -signature s.sign data.sha1 Where: pubkey.pem is the public key I pass as a PEM format. s.sign= signature in hex format( here I am not sure what format to use) data.sha1= I get send the original message to system B as a hex string. At System B I compute the sha1 digest of this hex string and store it at data.sha1 to verify. However the verification always fails. With this regard, what are the expected formats of the files? Is there a way to use a hex file for data and signature? or even a base64 encoded signature and data for verification? What am I doing wrong here? Please help!! Regards, Tera Tellence
