Error to validate the signature of a SIG(0) transaction...
Manuel Gil Perez
manuel at dif.um.es
Fri Jan 14 12:00:03 UTC 2005
> After all, only you will know the format of that original RSA key.
I'm using RSA public keys in PKCS#1 format
(http://www.rsasecurity.com/rsalabs/node.asp?id=2125). I don't think this
format is very strange.
Manuel Gil Pérez
----- Original Message -----
Sent: Thursday, January 13, 2005 4:47 PM
Subject: Re: Error to validate the signature of a SIG(0) transaction...
>>>>>> "Manuel" == Manuel Gil Perez <manuel at dif.um.es> writes:
> Manuel> Jim, I'd like to add a reliable RSA public key in the
> Manuel> server but DNSSec can only store keys in DNSKEY
> Manuel> format. How can I convert a key from RSA to DNSKEY for
> Manuel> storing it like reliable for the server??
> I don't understand the question or what you mean by a "reliable" RSA
> public key. The DNSSEC-related RFCs and drafts document the text and
> wire format of the keys. If you've got some other RSA key from
> somewhere else, you'll need to figure out for yourself how to
> translate that into DNSKEY or KEY RRtypes. [After all, only you will
> know the format of that original RSA key.] Perhaps there's something
> in the OpenSSL tookit that can help?
More information about the bind-users