Eugen Leitl <[EMAIL PROTECTED]> writes:

> 1) What's the name of the technique of salting/padding an small integer 
>    I'm signing with random data?

Blinding?  Padding?  It depends on what you are trying to accomplish.

> 2) If I'm signing above short (~1 kBit) sequences, can I sign them 
>    directly, or am I supposed to hash them first? (i.e. does a presence
>    of an essentially fixed field weaken the signature)

It depends on the signature algorithm.  With RSA you can sign any
message "directly" if said message is smaller than the public key size
(N).  DSA, however, requires the use of a hash.

Note that, in the grand scheme of things, performing the public key
operation is significantly slower than performing the hash, so it
really doesn't hurt you computationally to perform the hash.  OTOH,
your signature strength still depends on the strength of your hash.


       Derek Atkins
       Computer and Internet Security Consultant

The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]

Reply via email to