AI_PKCS_OAEP_RSAPrivateBER

--The identifier says that the algorithm by which the P

--string for RSAES-OAEP is generated is by setting it

--equal to the contents of the OCTET STRING which is

--the parameter for this AlgorithmIdentifier.

--The DER for this in hexadecimal is:

--06 09

--2A 86 48 86 F7 0D 01 01 09

--

id-pSpecified OBJECT IDENTIFIER ::= {

iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs-1(1) pSpecified(9)}

--Identifier for the SHA1 digest function.

--The DER for this in hexadecimal is:

--06 05

--2B 0E 03 02 1A

--

id-sha1 OBJECT IDENTIFIER ::= {

iso(1) identified-organization(3) oiw(14) secsig(3) algorithms(2) sha1(26) }

--Syntax of AlgorithmIdentifier.parameters for RSAES-OAEP.

--Note that the tags in this Sequence are explicit.

--The DER encoding of DEFAULT values is to omit them.

--

 

 

RSAES-OAEP-params ::=

SEQUENCE {

hashFunc

[0]

AlgorithmIdentifier {

{oaepDigestAlgorithms} }

 

DEFAULT sha1Identifier,

maskGenFunc

[1]

AlgorithmIdentifier {

{pkcs1MGFAlgorithms} }

 

DEFAULT mgf1SHA1Identifier,

pSourceFunc

[2]

AlgorithmIdentifier {

{pkcs1PGenAlgorithms} }

DEFAULT pSpecifiedEmptyIdentifier

}

--Algorithm Identifier for SHA1, which is the OAEP default.

sha1Identifier ::= AlgorithmIdentifier { id-sha1, NULL }

--Default AlgorithmIdentifier for id-RSAES-OAEP.maskGenFunc.

mgf1SHA1Identifier ::= AlgorithmIdentifier { id-mgf1, sha1Identifier }

1 4 6

R S A B S A F E C r y p t o - C L i b r a r y R e f e r e n c e M a n u a l

Page 156
Image 156
RSA Security 5 manual Sequence