Signing/Verifying problem, due to keypair problem?
Hi,
To start, I already checked http://forum.java.sun.com/thread.jspa?forumID=23&threadID=615884
I'm signing a SHA1-messageDigest on my Java Card using the algorithm Signature.ALG_RSA_SHA_PKCS1. The problem is that I can not verify it off-card, using JCE or FlexiCoreProvider (http://www.flexiprovider.de/overview.html). When I sign the same SHA1-messageDigest off-card, I get another signature. For both signing and verifying off-card I use "SHA1withRSA". Are both compatible?
I'm extracting my keys from a certificate, in contrary to the post above.
But I was just wondering... The public key modulus has a length of 129, so it is signed if I'm correct.
In the smart card I just cut off the first byte (the sign) and set the following 128 bytes as the modulus (I need it in the Smart card). Disconnected from the main problem, I assume this is correct?
Off-card I just extract my public key from the certificate, is it possible that the public key that I extract is incompatible with the corresponding private key in the smart card? (They are derived from the same keypair.
Do you have any suggestions to solve this problem? I'm using the Cyberflex 64K v2
like always, your help is appreciated A LOT!!!
