如何找到给定私钥的首选签名算法
如何找到给定私钥的首选签名算法
提问于 2022-06-08 20:53:33
我正在使用BouncyCastle颁发X509证书。我发现了许多代码示例,其中签名算法名是固定的,比如"SHA256WithRSAEncryption“这里
ContentSigner sigGen = new JcaContentSignerBuilder("SHA256WithRSAEncryption")
.setProvider(BC).build(privKey);在BouncyCastle或JDK中是否有为给定的PrivateKey查找首选签名算法名称的方法?就像这里的getPreferredSignatureAlgorithm():
// is there method like this?
String signatureAlgorithm = getPreferredSignatureAlgorithm(issuerPrivKey);
JcaX509v3CertificateBuilder builder = new JcaX509v3CertificateBuilder(...);
ContentSigner signer = new JcaContentSignerBuilder(signatureAlgorithm)
.build(issuerPrivKey);
X509Certificate certificate = new JcaX509CertificateConverter()
.setProvider(new BouncyCastleProvider())
.getCertificate(builder.build(signer));回答 1
Stack Overflow用户
发布于 2022-06-29 18:38:36
在回答我自己的问题时,我最后只是像这样实现了我自己的方法
private static String signatureAlgorithm(PublicKey pub) {
switch (pub.getAlgorithm()) {
case "EC":
EllipticCurve curve = ((ECPublicKey) pub).getParams().getCurve();
switch (curve.getField().getFieldSize()) {
case 224:
case 256:
return "SHA256withECDSA";
case 384:
return "SHA384withECDSA";
case 521:
return "SHA512withECDSA";
default:
throw new IllegalArgumentException("unknown elliptic curve: " + curve);
}
case "RSA":
return "SHA256WithRSAEncryption";
default:
throw new UnsupportedOperationException("unsupported private key algorithm: " + pub.getAlgorithm());
}
}页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://stackoverflow.com/questions/72552074
复制相关文章
相似问题
腾讯云开发者
