---

RSA Signature/Generation & Validation

---

Generate RSA Key Size 512 bit 1024 bit 2048 bit 4096 bit

Verify Signature

Generate Signature

Public Key	Private Key
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq68soB7V3viiW2n5YO3k tEam4k6MDCHjZ5IDIkEz+spBs8APn9wNLMxCdYpthVPoJe88eEy2MCT2mxlmp/FB sTjD/JxwVYq1Fi68wBX6tXGUxusjKhmD0vOknrJDwA9gYRsNuuBDIB9nR6Q+8rr8 TXWHRqcrGSJ3q/s0hN2V/s5OLoW48MUvOV/xGABu3IoRP55lC1arE4nSw0dtUk5F B/nmpXy+IRSkSzLFzU3FqkADqYFomDFgXWjER5gUvud5/k+i37g6rysg57HT/rwj 4x79wqi5uTWLLFO06G7otxFFNgLxbKf9T8qSuqd3Z7qRSyT+x30ku1Rp3yP0JKXP 8QIDAQAB -----END PUBLIC KEY-----	-----BEGIN RSA PRIVATE KEY----- MIIEowIBAAKCAQEAq68soB7V3viiW2n5YO3ktEam4k6MDCHjZ5IDIkEz+spBs8AP n9wNLMxCdYpthVPoJe88eEy2MCT2mxlmp/FBsTjD/JxwVYq1Fi68wBX6tXGUxusj KhmD0vOknrJDwA9gYRsNuuBDIB9nR6Q+8rr8TXWHRqcrGSJ3q/s0hN2V/s5OLoW4 8MUvOV/xGABu3IoRP55lC1arE4nSw0dtUk5FB/nmpXy+IRSkSzLFzU3FqkADqYFo mDFgXWjER5gUvud5/k+i37g6rysg57HT/rwj4x79wqi5uTWLLFO06G7otxFFNgLx bKf9T8qSuqd3Z7qRSyT+x30ku1Rp3yP0JKXP8QIDAQABAoIBAA4P8x/KZso0o1fJ fluqIKmDf/fZZy83N2EsXIVZweAw4ODQQnddltashGUMSZw6GzHAPru7zNB0tp5N nlLzN+ZEOAlg5vKawepnOZ6iLj7eZslESUURgfKtcjZtc48vsz1A8gb0h4sCB3ue wGkxV6kgj0wCNU2BvTug/9RCMh8EtJo5jTDS4uJIUsS4e7x7diRR00CtPF4qErNg v+IDs8fJvk6euFYgJRGxgvOogJFbnedlMZTHmAS6m9fMPeKfJz/DdWCywThO045G 8owQCywdXszHDcF7tPlgzFcnzvfWOwImbx+Hpfv09VwWcsJJfYAiYqQNQ+9xIRHJ u90A2GECgYEA08FU3102dgzyU81rW5mDaffFXw7C23S4SVsJ0QYD3ASZzs3Bd5Qy CwZ8XSSdxIGR9KzI1VVycT9i5HrcNwuZ3//H7WnDuurKXzyASf00d7smDijOt1GC pV5INjuhZhHQ6HRbg1BJcMLxNhVtYEnxp1awwf6+G3YtoTMABBTlHqsCgYEAz454 moMmAo94cAgK8XOEbhAlurU1t2wmkxEW6+dl/B0OKDsRjITZq+APFNwHK8zqX7nO qCZ1EmR6l5PiIObzF5Dnm1G0T+5XzBufYKiDIXdNfpGPff3yr2LxqQakxvRcE94z AXmE0dCei4XCusDfbwcna2d2jEnepvWj2+a0m9MCgYEAlx+/JroriAytVUmhePoS Y6pE3hZ20pB2hUPHubmFP5y4+HK3xFOrc1rpnr/nKLsgI3K80iPtTQ1j0pQsXcyV wNuXH8T/v4KZc2aGWEexDlIuUqSlAwfVKZgkCTB9e47zfTKtrQW7pBI8e9DHApVD NZ4VAB6CJq8s2YLAXClda4kCgYAHz1KWbczmV8OuY38V6sTW52CkD+F/j2A8NG5q XgCmZel8dgyI/w65uuqWXFkgussu4uz1wsyw7nr2bSgbGNWY02kDnSVtxIglM/zh RDX68mRGGPAPS5jwJIb3VzqoCdXVIY1Fxu7KflEY6uWS5WMC6IABOJlrWfQ40BFk Wt/85QKBgDeGQt33MCqSRCqkf/0M0j2zCdID31vvB3SmVOtqjPbCnPaBYFNp7egc sPcQBoYYxjSQZ0IjPa/51nwaoS40BF+3bqla3gEN0i1+YxjIyqPo2KN6AKqDi2go Il/GsTFWHiX1PwLt1Y+8jEST+rbNxUTf40ZyVt5EV8ULiOSMyPiP -----END RSA PRIVATE KEY-----
ClearText Message	Signature Output
Provide Signature Value (Base64)
RSA Signature Algorithms RSASSA-PSS SHA1WithRSA/PSS SHA224WithRSA/PSS SHA384WithRSA/PSS SHA1withRSAandMGF1 SHA256withRSA sha1WithRSA sha384WithRSA sha512WithRSA md2WithRSA md5WithRSA

---

---

Your Support Matters!

Instead of directly asking for donations, I'm thrilled to offer you all nine of my books for just $9 on leanpub By grabbing this bundle you not only help cover my coffee, beer, and Amazon bills but also play a crucial role in advancing and refining this project. Your contribution is indispensable, and I'm genuinely grateful for your involvement in this journey!

Any private key value that you enter or we generate is not stored on this site, this tool is provided via an HTTPS URL to ensure that private keys cannot be stolen, for extra security run this software on your network, no cloud dependency

---

---

The RSA Algorithm

The Rivest-Shamir-Adleman (RSA) algorithm is one of the most popular and secure public-key encryption methods. The algorithm capitalizes on the fact that there is no efficient way to factor very large (100-200 digit) numbers

There are two diffrent RSA signature schemes specified in the PKCS1

• RSASSA-PKCS1-v1_5: old Signature Scheme with Appendix as first standardized in version 1.5 of PKCS #1.
• RSASSA-PSS (RSASSA = RSA Signature Scheme with Appendix). : based on Probabilistic Signature Scheme (PSS) originally invented by Bellare and Rogaway.

Diffrences

RSASSA-PKCS-v1_5	RSASSA-PSS
PKCSV1_5 is deterministic	PSS has a security proof and is more robust in theory than PKCSV1_5
Old Scheme	New Scheme
Recommended For for compatibility with existing applications	Recommended for eventual adoption in new applications

RSASSA-PSS parameters

• Hash Algorithm. The default is SHA-1
• Mask generation function (MGF). Currently always MGF1.
• salt length Default is 20
• Traiter field

The default parameters for RSASSA-PSS are:
> hashAlgorithm       sha1,
> maskGenAlgorithm    mgf1SHA1 (the function MGF1 with SHA-1)
> saltLength          20,
> trailerField        trailerFieldBC (the byte 0xbc)

RSA Signature Generation & Verification

• The private key is the only one that can generate a signature that can be verified by the corresponding public key.
• The RSA operation can't handle messages longer than the modulus size. That means that if you have a 2048 bit RSA key, you would be unable to directly sign any messages longer than 256 bytes long. So signing the hash is just as good as signing the original message, without the length restrictions we would have if we didn’t use a hash
• RSASSA-PSS combines the RSASP1 and RSAVP1 primitives with the EMSA PSS encoding method.
• RSASSA-PKCS1-v1_5 : combines the RSASP1 and RSAVP1 primitives with the EMSA-PKCS1-v1_5 encoding method.

How to perform RSA Sign/Verify in

Go Lang	Python	Web Crypto(Javascript)