Small portable digital signature and verification library

I am looking for a library that allows me to authenticate data sent to inline modules. Due to hardware constraints, it should be small (both code and memory) and still have security comparable to RSA-1024.

The requirements are as follows

  • Checking inline modules (custom CPUs, only with C89 compiler)
  • Windows Signing and Verification (C / C ++ Code)
  • Java signing (some data needs to be generated via a webpage, so Java would be a great perk)

I would really like if I didn’t implement a PKCS # 1 v1.5 / PSS-like system myself, but I couldn’t find good libraries that meet the above requirements. Open source will be nice, but commercial solutions are of equal interest. Note that I need access to the C code as it needs to be recompiled for custom processors.

NaCl looks promising, but it looks like it's still in development.

I looked at OpenSSL , but it does a lot more than digital signatures and only removes the signature verification code was non-trivial.

Am I looking at this the wrong way? I tried to implement SHA + RSA at first, but I was not sure if the padding step was correct (which means it was probably unsafe), so I decided to post for reference instead.

EDIT: Clarification, only part of the validation has hard limits on it. Key signing and generation will work on regular PCs.

+3


source to share


2 answers


How can such a solution be implemented, related to our existing CPU and memory architecture, so I will have to tell more about your system. The first way is to develop it on the cloud. Another alternative would be SCL . Also, you can find answers to Small RSA or DSA lib without dependencies



0


source


Take a look at PolarSSL :



PolarSSL makes it easy for developers to incorporate cryptographic and SSL / TLS capabilities into their (embedded) products, thus facilitating this functionality with minimal coding coverage.

+2


source







All Articles