Small portable digital signature and verification library
I am looking for a library that allows me to authenticate data sent to inline modules. Due to hardware constraints, it should be small (both code and memory) and still have security comparable to RSA-1024.
The requirements are as follows
- Checking inline modules (custom CPUs, only with C89 compiler)
- Windows Signing and Verification (C / C ++ Code)
- Java signing (some data needs to be generated via a webpage, so Java would be a great perk)
I would really like if I didn’t implement a PKCS # 1 v1.5 / PSS-like system myself, but I couldn’t find good libraries that meet the above requirements. Open source will be nice, but commercial solutions are of equal interest. Note that I need access to the C code as it needs to be recompiled for custom processors.
NaCl looks promising, but it looks like it's still in development.
I looked at OpenSSL , but it does a lot more than digital signatures and only removes the signature verification code was non-trivial.
Am I looking at this the wrong way? I tried to implement SHA + RSA at first, but I was not sure if the padding step was correct (which means it was probably unsafe), so I decided to post for reference instead.
EDIT: Clarification, only part of the validation has hard limits on it. Key signing and generation will work on regular PCs.
source to share
How can such a solution be implemented, related to our existing CPU and memory architecture, so I will have to tell more about your system. The first way is to develop it on the cloud. Another alternative would be SCL . Also, you can find answers to Small RSA or DSA lib without dependencies
source to share