Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Digital signature for a file using openssl

Tags:

openssl

cryptography

rsa

Is there a way to digitally sign a x509 certificate or any document using openssl?

like image 755
Ajay kumar Avatar asked May 28 '12 10:05

Ajay kumar

People also ask

What is signature in Openssl?

Digital signature and verification A digital signature is a mathematical scheme for presenting the authenticity of digital messages or documents. Message / file to be sent is signed with private key. Message received by the recipient is authenticated using public key.

How does openssl verify signature?

To verify a signature, the recipient first decrypts the signature using a public key that matches with the senders private key. This produces a digest. Then the recipient calculates a digest from the received data and verifies that it matches with the one in the signature. If the digest match, the signature is valid.

What is Openssl Dgst?

DESCRIPTION. This command output the message digest of a supplied file or files in hexadecimal, and also generates and verifies digital signatures using message digests. The generic name, openssl dgst, may be used with an option specifying the algorithm to be used.

2 Answers

To Generate Private Key

openssl genrsa -out privatekey.pem 2048

To Sign

openssl dgst -sha256 -sign privatekey.pem -out data.txt.signature data.txt

To Generate The Public Key

dgst -verify requires the public key

openssl rsa -in privatekey.pem -outform PEM -pubout -out publickey.pem

To Verify

openssl dgst -sha256 -verify publickey.pem -signature data.txt.signature data.txt
  • In case of success: prints "Verified OK", return code 0
  • In case of failure: prints "Verification Failure", return code 1
like image 99
reto Avatar answered Sep 17 '22 16:09

reto

Yes, the dgst and rsautl component of OpenSSL can be used to compute a signature given an RSA key pair.

Signing:

openssl dgst -sha256 data.txt > hash openssl rsautl -sign -inkey privatekey.pem -keyform PEM -in hash >signature

Verifying just the signature:

openssl rsautl -verify -inkey publickey.pem -pubin -keyform PEM -in signature

Update: Capturing Reto's comments from below because this is an important nuance. Presumably if you are going to the trouble to verify, you want to know the signature was produced on the plaintext to which it is attached:

This might sound obvious for some but: Be aware, rsautl verify just decrypts the file signature. The output of this call is guaranteed to be produced by the owner of the private key, but beside that nothing else is being checked. So to actually verify the consistency of data.txt you have to regenerate the digest and then compare it against the output of openssl rsautl -verify.

Verifying that the owner of the private key does vouch for data.txt:

openssl dgst -sha256 -verify publickey.pem -signature signature data.txt

For this operation, openssl requires the public key, the signature, and the message.

like image 32
Anders Lindahl Avatar answered Sep 17 '22 16:09

Anders Lindahl
Sign in to Comment

Related questions

Encryption vs. digest
What pool of characters do MD5 and SHA have?
SecureRandom with NativePRNG vs SHA1PRNG
PKCS#1 and PKCS#8 format for RSA private key [closed]
Why is using a Non-Random IV with CBC Mode a vulnerability?
how to use RSA to encrypt files (huge data) in C#
What is the difference between weak and strong resistance
Private key length bytes
How can I sign a file using RSA and SHA256 with .NET?
How do RSA tokens work?
Leveraging ASP.NET machineKey For Encrypting My Own Data
How to properly do private key management
Node.js hashing of passwords
ERROR: Could not build wheels for cryptography which use PEP 517 and cannot be installed directly
verifying a file signature with openssl dgst
How many prime numbers are there (available for RSA encryption)?
C# Export Private/Public RSA key from RSACryptoServiceProvider to PEM string
What does a circled plus mean?
Blackberry smartcard reader example
java equivalent to php's hmac-SHA1

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!