Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to verify data against signature with public key that uses sha1ecdsa?

Tags:

c#

.net

cryptography

c#-4.0

ecdsa

Knowing little about cryptography I have great problems with what seems to be a simple task.

I have .pem certificate, bytes of data, and signature of that data. I want to check if someone changed the data by matching it against signature.

My try:

private bool VerifySignature(byte[] data, byte[] signature)
{
  try
  {
    X509Certificate certificate = new X509Certificate("cert_filename.pem");
    if (certificate == null)
      return false;

    DSACryptoServiceProvider dsa = (DSACryptoServiceProvider)certificate.PublicKey.Key;

    return dsa.VerifyData(data, signatureData);
  }
  catch
  {
    return false;
  }
}

But it gives me an error

'Algorithm of certificates key is not supported' (System.NotSupportedException).

Looking into loaded certificate it says that the signature algorithm is 'sha1ecdsa'.

I am trying only to verify data against signature. What am I missing here? I would like to do it without any external solutions as it seems to be really trivial task.

Update: I am trying to achieve same functionality as in below Java code:

private boolean verify(byte[] data, byte[] signature)
{
  boolean isLicenseCorrect = false;

  Signature sig = Signature.getInstance("SHA1WithECDSA");
  sig.initVerify(certificate.getPublicKey());
  sig.update(data);

  return sig.verify(signature);
}
like image 676
kasper Avatar asked May 07 '15 11:05

kasper

People also ask

How does public key verify signature?

The recipient uses the sender's public key to decrypt the digital signature's hash. The recipient's computer calculates the hash of the original file and compares it with the decrypted hash. If the two hashes match, the signature is verified.

How do I verify a public key certificate?

For applications such as web browsers the canonical approach to verifying the authenticity of a public key is to sign it with another public key that you trust. These certificates are chained together with public key signatures signed by a trusted certificate authority in a hierarchal model.

How do I verify an RSA signature?

RSA Digital Signatures To sign a message m, just apply the RSA function with the private key to produce a signature s; to verify, apply the RSA function with the public key to the signature, and check that the result equals the expected message.

1 Answers

Although DSA and ECDSA are related, they are not the same. Why not try ECDsaCryptoServiceProvider? Note that the ECDSA support for Elliptic Curves only includes NIST named curves.

like image 145
Maarten Bodewes Avatar answered Sep 27 '22 20:09

Maarten Bodewes
Sign in to Comment

Related questions

Best practices to using global variables in C# [closed]
Safely stop long running task
Centralized live collaborative editing in Visual Studio
Problems with recursive generic type in c#
Dns.BeginGetHost... methods blocking
Recommended method signature when returning output from asynchronous method?
HashSet as DataSource
How to write large files to SQL Server FILESTREAM?
How to read PowerShell exit code via c#
Best approach for complex model/submodel validation (MVC)
How to cancel changes made through Databinding?
How do I implement BN_num_bytes() (and BN_num_bits() ) in C#?
What is the proper way to propagate exceptions in continuation chains?
ASP.NET WebApi OData support for DTOs
Entity Framework 4 issue
.NET 4.0 Concurrent collection performance
Is Observable.Interval useful for high frequency events?
Adding Data Annotations to Inherited Class
Abstracting Identity 2.0 to domain model layer
Dataflow with splitting work to small jobs and then group again

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!