You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@santuario.apache.org by "Pierrick Vandenbroucke (JIRA)" <ji...@apache.org> on 2017/10/16 12:29:00 UTC

[jira] [Created] (SANTUARIO-480) Support of RSASSA-PSS with SHA3

Pierrick Vandenbroucke created SANTUARIO-480:
------------------------------------------------

             Summary: Support of RSASSA-PSS with SHA3
                 Key: SANTUARIO-480
                 URL: https://issues.apache.org/jira/browse/SANTUARIO-480
             Project: Santuario
          Issue Type: Improvement
          Components: Java
            Reporter: Pierrick Vandenbroucke
            Assignee: Colm O hEigeartaigh
            Priority: Minor


Hello,

It seems that the following algorithms (from https://tools.ietf.org/html/rfc6931#section-2.3.10) are not supported by Santuario :
* http://www.w3.org/2007/05/xmldsig-more#sha3-224-rsa-MGF1
* http://www.w3.org/2007/05/xmldsig-more#sha3-256-rsa-MGF1
* http://www.w3.org/2007/05/xmldsig-more#sha3-384-rsa-MGF1
* http://www.w3.org/2007/05/xmldsig-more#sha3-512-rsa-MGF1

These algorithms are also included in the ETSI TS 119 312 V1.2.1.

Santuario already supports RSASSA-PSS encryptions and SHA-3 digests but doesn't handle combinations.

In the DSS project (which uses Santuario), I added the [following class|https://github.com/esig/dss/blob/develop/dss-xades/src/main/java/eu/europa/esig/dss/xades/validation/SignatureRSAwithSHA3andMGF1Support.java] and register the algorithms with the JCEMapper.

Regards,

Pierrick



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)