Hi!
I just realized that also in the new OCF version (version 1.2), the
documentation for
every verify* functions of the SignatureCardService are totally wrong.
For example:
----------------------------------------------------------------------------
------
verifySignedData
public boolean verifySignedData(PublicKeyRef publicKey,
java.lang.String signAlgorithm,
byte[] data,
byte[] signature)
throws CardServiceException ,
java.security.InvalidKeyException,
CardTerminalException
Verify a digital Signature including hashing. First hash the data,
then pad the hash, apply the PKA algorithm to the padded hash, then compare
the result to the provided signature.
----------------------------------------------------------------------------
---------------
I think that the correct explanation would be:
"Verify a digital signature including hashing. First apply the PKA algorithm
to the signature,
remove the pad from result (original hash), hash the data (new hash), then
compare the original hash and the new hash".
Regards,
MaSi
----------------------------------------------------------------------------
---------
Markku Siev�nen Tel: +358 9 8941 4253
Setec Oy Fax: +358 9 8941 4137
P. O. Box 31 E-mail: [EMAIL PROTECTED]
FIN-01741 Vantaa
Finland
---
> Visit the OpenCard web site at http://www.opencard.org/ for more
> information on OpenCard---binaries, source code, documents.
> This list is being archived at http://www.opencard.org/archive/opencard/
! To unsubscribe from the [EMAIL PROTECTED] mailing list send an email
! to
! [EMAIL PROTECTED]
! containing the word
! unsubscribe
! in the body.
