AI_PKCS_OAEPRecodeBER

--The identifier says that the algorithm by which the P

--string for RSAES-OAEP is generated is by setting it

--equal to the contents of the OCTET STRING which is

--the parameter for this AlgorithmIdentifier.

--The DER for this in hexadecimal is:

--06 09

--2A 86 48 86 F7 0D 01 01 09

--

id-pSpecified OBJECT IDENTIFIER ::= {

iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs-1(1) pSpecified(9)}

--Identifier for the SHA1 digest function.

--The DER for this in hexadecimal is:

--06 05

--2B 0E 03 02 1A

--

id-sha1 OBJECT IDENTIFIER ::= {

iso(1) identified-organization(3) oiw(14) secsig(3) algorithms(2) sha1(26) }

--Syntax of AlgorithmIdentifier.parameters for RSAES-OAEP.

--Note that the tags in this Sequence are explicit.

--The DER encoding of DEFAULT values is to omit them.

--

 

 

RSAES-OAEP-params ::=

SEQUENCE {

hashFunc

[0]

AlgorithmIdentifier {

{oaepDigestAlgorithms} }

 

DEFAULT sha1Identifier,

maskGenFunc

[1]

AlgorithmIdentifier {

{pkcs1MGFAlgorithms} }

 

DEFAULT mgf1SHA1Identifier,

pSourceFunc

[2]

AlgorithmIdentifier {

{pkcs1PGenAlgorithms} }

DEFAULT pSpecifiedEmptyIdentifier

}

--Algorithm Identifier for SHA1, which is the OAEP default.

sha1Identifier ::= AlgorithmIdentifier { id-sha1, NULL }

--Default AlgorithmIdentifier for id-RSAES-OAEP.maskGenFunc.

C h a p t e r 2 A l g o r i t h m I n f o Ty p e s

163

Page 172 Page 174
Page 173
Image 173
RSA Security 5 manual A p t e r 2 a l g o r i t h m I n f o Ty p e s 163
Page 172 Page 174
Top Page Image Contents