Hello Marek, Wednesday, August 9, 2006, 7:29:26 PM, you wrote: >> I'm confused a bit reading the "man RSA_sign" - why "RSA_sign()" >> needs to know which algorithm was used to produce a hash to be >> signed? > Because X509 signature consists not simply encrypted by private key > message digest (hash) but ASN1 structure called DigestInfo which has > such information like message digest type. So, in my case - should the NID_md5|sha1|ripemd160 I feed to RSA_sign() be the same as the actual hash algorithm used?
>> A side note: is it very difficult to reconstruct the whole RSA >> object if I know "*n", "*e" and "*d" elements? > Yes :-). This is called factorization - find two prime numbers that > n = p*q. Yes, searching for p and q that give n is a bruteforce approach. I thought that since I know the d element as well it could help to backtrack the p and q. After all - d was computed from these p and q. Is it lunacy? -- Best regards, Tony mailto:[EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
