[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [OATH-Toolkit-help] Encryption Based on Asymmetric Keys in RFC 6030
|
From: |
Simon Josefsson |
|
Subject: |
Re: [OATH-Toolkit-help] Encryption Based on Asymmetric Keys in RFC 6030 |
|
Date: |
Sun, 27 Jan 2013 19:56:56 +0100 |
|
User-agent: |
Gnus/5.130006 (Ma Gnus v0.6) Emacs/24.3.50 (gnu/linux) |
"Mingfa Ma" <address@hidden> writes:
> Hi, All,
Hello and welcome!
> Just wonder if anybody did some test on its seed example which uses
> Encryption Based on Asymmetric Keys (Figure 8)?
I haven't.
> I can't find the corresponding private key to that X509Certificate. Does
> Anybody know where to get it from?
No. Maybe the RFC authors still have it. The key is only RSA 1024 bits
(see certificate information output below), so it isn't out of reach to
crack it. :-)
> I tried to use the public key in that X509 certificate to do PKCS#1 v1.5
> encryption on the plaintext value of <Secret>
> '3132333435363738393031323334353637383930'. The result (after base64)
> was different from the one given in Figure 8.
The RFC doesn't explain what the secret value should be, does it? So it
might not be that string that was encrypted. Or there could be some XML
whitespace or namespace issue causing the difference.
I think libxmlsec supports this kind of encryption, so it should be
possible to support.
/Simon
X.509 Certificate Information:
Version: 3
Serial Number (hex): 499a7fbc
Issuer: O=IETF,OU=KeyProv WG,CN=PSKC Test
Validity:
Not Before: Tue Feb 17 09:13:32 UTC 2009
Not After: Thu Feb 17 09:13:32 UTC 2011
Subject: O=IETF,OU=KeyProv WG,CN=PSKC Test
Subject Public Key Algorithm: RSA
Certificate Security Level: Low (1024 bits)
Modulus (bits 1024):
00:b0:96:2c:36:b6:22:d6:09:ea:cb:bc:d2:17:75:80
be:1c:82:04:18:77:2c:8a:2b:5e:db:b6:df:da:4b:a4
3f:78:3b:0a:8e:c3:f2:14:83:83:b3:17:8a:55:5f:ee
03:7c:0b:4f:88:d0:24:ce:5e:b8:a2:57:90:36:a3:cc
61:8e:cb:dd:be:ca:97:f3:4d:7e:33:0c:93:24:87:ad
52:67:09:47:34:9c:41:2a:29:40:33:96:96:ec:2f:81
43:44:6f:0b:1b:dd:62:dc:f1:d8:b4:dd:07:e5:ff:28
c1:01:03:bb:88:63:12:df:5c:7d:8c:9e:e6:f7:58:88
75
Exponent (bits 24):
01:00:01
Signature Algorithm: RSA-SHA1
Signature:
7b:ce:f9:9b:ce:2c:61:42:7c:a8:f7:99:f8:d1:bb:44
48:13:be:51:d3:9a:80:9d:a0:1c:94:d0:b0:41:2e:8b
54:2a:ea:9f:ae:74:6e:5c:94:4c:79:95:da:68:41:a6
cd:8d:64:2e:89:d5:8d:01:b3:8c:09:14:e1:d2:7e:44
f9:a2:0e:56:2e:1c:b6:52:e3:53:e0:e9:53:30:63:ed
37:96:19:3a:23:90:3f:c3:8a:e7:a9:d9:26:c1:95:ff
36:05:e0:d3:a6:a5:9d:cd:a9:06:c5:d6:84:be:0e:ee
79:34:4b:66:6b:2c:cb:10:67:a1:dc:b1:78:1d:98:7a
Other Information:
SHA-1 fingerprint:
470ba5a779c7f3948a6928a65e8465c4a1447aac
Public Key Id:
d3aae08005b61940cd16941bddab62f7a31f46df
Public key's random art:
+--[ RSA 1024]----+
|o.+o+ . |
|. * . . |
|.o. o . |
|..+. . . |
| o. ..S . |
| o o o. .o. |
|. o + .o.. E |
| o ..+. |
| ..+.. |
+-----------------+
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----