Dear all, I have been digging a bit into the OpenSSL code to answer
because I have a doubt.
Using keys on file and, also, using smart cards via the OpenSC engine, I
am almost sure that by producing a PKCS7 the signature is of type
"sha1WithRSAEncryption" (at least without any special options), that
implies using specific kinds of padding for the digest before the RSA
encryption, for instance.
The signature in the PKCS7, though, is marked as an object of type
"rsaEncryption" (can tell with the asn1parse command).
Is it correct to say that they are are the same, or, better, that
1) "rsaEncryption" includes the "sha1WithRSAEncryption" type
2) "sha1WithRSAEncryption" is what the PKCS7 API does by default?
Do you think that specifying better would be an advantage?
Otherwise, if "sha1WithRSAEncryption" is not included in
"rsaEncryption", which is the actual difference?
Thanks
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [email protected]
