I'm using OpenSSL to generate EC key pairs for use in an embedded application.
As such, I need to extract and use the raw key values, and I notice that the
length of the keys as displayed by OpenSSL are exactly one byte longer than
expected. I assume the first byte listed for both public and
Hi Brian,
If so, what is it's purpose?
They are ASN.1 encoded integers. The leading '0' octect ensures the
value is interpreted as non-negative. See X.680.
Do You Yahoo!?
No.
Jeff
On Tue, Sep 22, 2009 at 9:47 PM, Brian Kuschak bkusc...@yahoo.com wrote:
I'm using OpenSSL to generate EC key
The leading 00 is there just to comply with DER encoding restrictions
-- otherwise, since the high bit is set, it would be interpereted as a
negative number. (For clarity, it is a very large positive integer.)
Besides, EC pairs are just numbers. The leading 00 does nothing to
change the
@openssl.org openssl-users@openssl.org
Cc: openssl-users@openssl.org openssl-users@openssl.org
Sent: Tuesday, September 22, 2009 9:12:30 PM
Subject: Re: Wrong size for EC key pair
The leading 00 is there just to comply with DER encoding restrictions --
otherwise, since the high bit is set