Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Read DER private key in C# using BouncyCastle

Tags:

c#

encryption

bouncycastle

I am trying to read an RSA private key into .Net using BouncyCastle to test data I have previously encrypted. The encrypted data is working fine using the public key and Bouncy Castle and I have also used the same private key as below (which is DER format) to successfully decrypt my data in a PHP application but I don't know why I can't create the private key in .Net to do the same thing:

byte[] privatekey = File.ReadAllBytes(@"C:\Users\Luke\privkey.der");
var rsaKeyParameters = (RsaKeyParameters)PrivateKeyFactory.CreateKey(privatekey);

The second line throws an exception:

"unknown object in factory: DerInteger\r\nParameter name: obj"

I also tried using a stream instead of a byte array and the same error occurs. The key pair was created using OpenSSL and as mentioned, decryption works in PHP using openssl_private_decrypt() and the same key as in the .Net code. I also tried a PEM format of the same key and that also didn't work (but I don't think BC supports PEM directly anyway)

Has anyone done this before? Thanks

like image 826
Lukos Avatar asked Feb 14 '23 12:02

Lukos

1 Answers

The problem was that I had assumed PublicKeyFactory and PrivateKeyFactory were complimentary since they are in the same namespace. They are not!

To decode the private key, I needed the following alternative code:

var privKeyObj = Asn1Object.FromStream(privatekey);
var privStruct = new RsaPrivateKeyStructure((Asn1Sequence)privKeyObj);

// Conversion from BouncyCastle to .Net framework types
var rsaParameters = new RSAParameters();
rsaParameters.Modulus = privStruct.Modulus.ToByteArrayUnsigned();
rsaParameters.Exponent = privStruct.PublicExponent.ToByteArrayUnsigned();
rsaParameters.D = privStruct.PrivateExponent.ToByteArrayUnsigned();
rsaParameters.P = privStruct.Prime1.ToByteArrayUnsigned();
rsaParameters.Q = privStruct.Prime2.ToByteArrayUnsigned();
rsaParameters.DP = privStruct.Exponent1.ToByteArrayUnsigned();
rsaParameters.DQ = privStruct.Exponent2.ToByteArrayUnsigned();
rsaParameters.InverseQ = privStruct.Coefficient.ToByteArrayUnsigned();
var rsa = new RSACryptoServiceProvider();
rsa.ImportParameters(rsaParameters);
return Encoding.UTF8.GetString(rsa.Decrypt(Convert.FromBase64String(ciphertext), true));

A BIG thankyou to owlstead for their help.

like image 192
Lukos Avatar answered Feb 23 '23 11:02

Lukos
Sign in to Comment

Related questions

The 'MSDAORA.1' provider is not registered on the local machine
How to add data to an existing xml file in c#
Convert Date Formatting Codes to date
How do I force a validation summary to appear with FluentValidation?
Moq verify fails when SelectMany
Timer updating label
Could not find path in the web application
Why using System.Threading.Thread.Sleep() is a bad practice?
C# User control with timer starts even in design mode
Is a DateTime.ToString format expression affected by the current culture locale?
C# .Net 4.5 Multithreading sharing variables
C# Change color of one character in a text box
JSON Deserialization Error in C#
Mysterious Length-Parameter in MVC Action
Writing a recursive function in C#
Adding comma after each two digits in String.Format
using Excel = Microsoft.Office.Interop.Excel Compilation Error
C# class members access issue
Display HTML 5 Telephone number link in Razor
Convert UTC DateTime to Local timezone in Xaml?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!