dropbear: notes/tech0006.txt annotate

annotate notes/tech0006.txt @ 212:a3e31d3983cb libtomcrypt

merge of 24ccd6df75086f1028c185f4ad5946f449bf2e05 and cc138b6aed8d554f52f041a11afecb95e95ed3b8

author	Matt Johnston <matt@ucc.asn.au>
date	Wed, 06 Jul 2005 13:24:05 +0000
parents	39d5d58461d6
children

rev	line source
209 39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	1 Tech Note 0006
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	2 PK Standards Compliance
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	3 Tom St Denis
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	4
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	5 RSA
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	6 ----
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	7
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	8 PKCS #1 compliance.
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	9
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	10 Key Format: RSAPublicKey and RSAPrivateKey as per PKCS #1 v2.1
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	11 Encryption: OAEP as per PKCS #1
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	12 Signature : PSS as per PKCS #1
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	13
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	14 DSA
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	15 ----
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	16
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	17 The NIST DSA algorithm
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	18
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	19 Key Format: HomeBrew [see below]
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	20 Signature : ANSI X9.62 format [see below].
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	21
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	22 Keys are stored as
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	23
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	24 DSAPublicKey ::= SEQUENCE {
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	25 publicFlags BIT STRING(1), -- must be 0
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	26 g INTEGER , -- base generator, check that g^q mod p == 1
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	27 -- and that 1 < g < p - 1
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	28 p INTEGER , -- prime modulus
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	29 q INTEGER , -- order of sub-group (must be prime)
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	30 y INTEGER , -- public key, specifically, g^x mod p,
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	31 -- check that y^q mod p == 1
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	32 -- and that 1 < y < p - 1
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	33 }
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	34
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	35 DSAPrivateKey ::= SEQUENCE {
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	36 publicFlags BIT STRING(1), -- must be 1
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	37 g INTEGER , -- base generator, check that g^q mod p == 1
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	38 -- and that 1 < g < p - 1
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	39 p INTEGER , -- prime modulus
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	40 q INTEGER , -- order of sub-group (must be prime)
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	41 y INTEGER , -- public key, specifically, g^x mod p,
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	42 -- check that y^q mod p == 1
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	43 -- and that 1 < y < p - 1
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	44 x INTEGER -- private key
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	45 }
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	46
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	47 Signatures are stored as
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	48
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	49 DSASignature ::= SEQUENCE {
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	50 r, s INTEGER -- signature parameters
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	51 }
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	52
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	53 ECC
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	54 ----
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	55
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	56 The ANSI X9.62 and X9.63 algorithms [partial]. Supports all NIST GF(p) curves.
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	57
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	58 Key Format : Homebrew [see below, only GF(p) NIST curves supported]
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	59 Signature : X9.62 compliant
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	60 Encryption : Homebrew [based on X9.63, differs in that the public point is stored as an ECCPublicKey]
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	61 Shared Secret: X9.63 compliant
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	62
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	63 ECCPublicKey ::= SEQUENCE {
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	64 flags BIT STRING(1), -- public/private flag (always zero),
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	65 keySize INTEGER, -- Curve size (in bits) divided by eight
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	66 -- and rounded down, e.g. 521 => 65
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	67 pubkey.x INTEGER, -- The X co-ordinate of the public key point
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	68 pubkey.y INTEGER, -- The Y co-ordinate of the public key point
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	69 }
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	70
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	71 ECCPrivateKey ::= SEQUENCE {
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	72 flags BIT STRING(1), -- public/private flag (always one),
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	73 keySize INTEGER, -- Curve size (in bits) divided by eight
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	74 -- and rounded down, e.g. 521 => 65
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	75 pubkey.x INTEGER, -- The X co-ordinate of the public key point
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	76 pubkey.y INTEGER, -- The Y co-ordinate of the public key point
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	77 secret.k INTEGER, -- The secret key scalar
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	78 }
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	79
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	80 The encryption works by finding the X9.63 shared secret and hashing it. The hash is then simply XOR'ed against the message [which must be at most the size
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	81 of the hash digest]. The format of the encrypted text is as follows
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	82
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	83 ECCEncrypted ::= SEQUENCE {
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	84 hashOID OBJECT IDENTIFIER, -- The OID of the hash used
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	85 pubkey OCTET STRING , -- Encapsulation of a random ECCPublicKey
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	86 skey OCTET STRING -- The encrypted text (which the hash was XOR'ed against)
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	87 }
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	88
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	89 % $Source: /cvs/libtom/libtomcrypt/notes/tech0006.txt,v $
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	90 % $Revision: 1.2 $
39d5d58461d6 Import of libtomcrypt 1.05 Matt Johnston <matt@ucc.asn.au> parents: diff changeset	91 % $Date: 2005/06/18 02:26:27 $

Mercurial > dropbear

annotate notes/tech0006.txt @ 212:a3e31d3983cb libtomcrypt