---

RSA Signature/Generation & Validation

---

Generate RSA Key Size 512 bit 1024 bit 2048 bit 4096 bit

Verify Signature

Generate Signature

Public Key	Private Key
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1jtWGb+vWVRHzaL53Rk2 5vw26tGKyeFv4mr0FkRFsJ7Pn/7q8fwjQblQXmu9MYlldrQt2ynizrj94/kWlBiD PkzUTOrW0Mn3q7WlOXDHmn+zn7okCnhzG8SIAZIhCqjWaSb1S8XzeCfcDYDS5SaN SBblpx0NDvRQe9RNo45l/tXi4QPiT9Eh8qeTYIJX8JGU1kZDKlwnOBNNAcFu21E8 tWZZRNRVFRdHu+MO3JTmPfCjhy37QZMz9HgR5l+5cWaz9aPeZ9YNyKQTnCvZK5CP saiIx62n4117ryJaLkwzxnnxXij7tuqQPYayaGruRpIdljdLZRiO6cR5SAgj+Zb2 fQIDAQAB -----END PUBLIC KEY-----	-----BEGIN RSA PRIVATE KEY----- MIIEpAIBAAKCAQEA1jtWGb+vWVRHzaL53Rk25vw26tGKyeFv4mr0FkRFsJ7Pn/7q 8fwjQblQXmu9MYlldrQt2ynizrj94/kWlBiDPkzUTOrW0Mn3q7WlOXDHmn+zn7ok CnhzG8SIAZIhCqjWaSb1S8XzeCfcDYDS5SaNSBblpx0NDvRQe9RNo45l/tXi4QPi T9Eh8qeTYIJX8JGU1kZDKlwnOBNNAcFu21E8tWZZRNRVFRdHu+MO3JTmPfCjhy37 QZMz9HgR5l+5cWaz9aPeZ9YNyKQTnCvZK5CPsaiIx62n4117ryJaLkwzxnnxXij7 tuqQPYayaGruRpIdljdLZRiO6cR5SAgj+Zb2fQIDAQABAoIBAGbK9ddJCIQeUo2z A505OgS/REKL5MJVb2/+zbvZam8C5LDqiiUuTGR+3LdRjugz+wFoFxCwGmoCjaBT pqfM0zyTdNKrZAOuxS4Y7HyRRtU1LSUZFa4IeYL7XB8U1NHejXLLBKwlAVvIFGhO ReM6ClRq2CrFX7yrMesYxWATNZF+gqQoKvdva47C/7Wiwds+PYW/GkIFPkWkITYe ApGcRe6I5Y1KptjatwuLn1rx1PP3DjgGwpV1WAoXxDNyWd5zJEAIswWWi9o6QPXm DITL+rJJIchmsu3JCs04Oek7h1qy7mM48POrgyoboPlUFWi6s8Dc9HKYDNDkZJTV Q+Rx+6kCgYEA7tkp2HsM5frxszxx/Txlq15K4CdayoDH+8naqkFNjupu7Fx8xMaa lagSvClgM0/kq8nfCZC+s8Q9EBkZLAilOFy99Du83gUvmbGwkiJ9lS7sJDS173eY ySvVeIuEF1aGaL8s69msly8jyKN/efx6N8EoGIfwxwTByiE02Frb1Z8CgYEA5Z2j b6UbOGJWAQZtU/aNTdBjMzLxd/sfCjYJDVHQTAekb5vdSSBQs+pF88nPzQwzYnmE 2TN1zzV9ulCE8zrEfT+ZvVA3EYFmBkfh6kEg64NOotsoV/JnSIxcZ7SMvhkmeIiF ZfEJfVVR8EpbgAnPw98uUagWtLke+FhS01DKZmMCgYEA66MztW8wenPooHuxubQs WbTdCefJmp8SrUWnhPCII8cFSAq2zStituLqGNh5ICZh41l1wWobuh6QX6FjRB4D Ymecv6dv3Voga/Dx0jpUyylPryiRlX7YLSAhqpt55cxnLk/tcYF+1GidVQR4b1C3 Aup9NDZpRO9cgJ3iFNEOsOECgYAREOlf1+6w/yYTR24CypVwDigBWyz1VPXWpXOA yO7pZ7wCC5yj3cIBzUzLtNk8DUcYb52/IwMDlp80pN1s0pZeFMcReg/Nvkdd+iPB bHvM5WKH2jAicULZ8oy/rHy1eFsSpFr9269v4FKJwI0SdCg8D696pDqjzgqOPMpT KHMSrwKBgQC8dP494fDfQM/689XagdCBFUJYcsz7ptBin6kqpqmh1lZ9PARuumQK p8JXCV18/POq5SZjSyCH+Tkm6rYiJJ3u1XAplF3X9+IhKsrag4hYt9itRBPDaqiP RiJRrvSFJyviwuOUlLxXG8wyeoLXa5bNCqNEJT25qR2Qd2BgWkFywQ== -----END RSA PRIVATE KEY-----
ClearText Message	Signature Output
Provide Signature Value (Base64)
RSA Signature Algorithms RSASSA-PSS SHA1WithRSA/PSS SHA224WithRSA/PSS SHA384WithRSA/PSS SHA1withRSAandMGF1 SHA256withRSA sha1WithRSA sha384WithRSA sha512WithRSA md2WithRSA md5WithRSA

---

---

Your Support Matters!

Instead of directly asking for donations, I'm thrilled to offer you all nine of my books for just $9 on leanpub By grabbing this bundle you not only help cover my coffee, beer, and Amazon bills but also play a crucial role in advancing and refining this project. Your contribution is indispensable, and I'm genuinely grateful for your involvement in this journey!

Any private key value that you enter or we generate is not stored on this site, this tool is provided via an HTTPS URL to ensure that private keys cannot be stolen, for extra security run this software on your network, no cloud dependency

---

---

The RSA Algorithm

The Rivest-Shamir-Adleman (RSA) algorithm is one of the most popular and secure public-key encryption methods. The algorithm capitalizes on the fact that there is no efficient way to factor very large (100-200 digit) numbers

There are two diffrent RSA signature schemes specified in the PKCS1

• RSASSA-PKCS1-v1_5: old Signature Scheme with Appendix as first standardized in version 1.5 of PKCS #1.
• RSASSA-PSS (RSASSA = RSA Signature Scheme with Appendix). : based on Probabilistic Signature Scheme (PSS) originally invented by Bellare and Rogaway.

Diffrences

RSASSA-PKCS-v1_5	RSASSA-PSS
PKCSV1_5 is deterministic	PSS has a security proof and is more robust in theory than PKCSV1_5
Old Scheme	New Scheme
Recommended For for compatibility with existing applications	Recommended for eventual adoption in new applications

RSASSA-PSS parameters

• Hash Algorithm. The default is SHA-1
• Mask generation function (MGF). Currently always MGF1.
• salt length Default is 20
• Traiter field

The default parameters for RSASSA-PSS are:
> hashAlgorithm       sha1,
> maskGenAlgorithm    mgf1SHA1 (the function MGF1 with SHA-1)
> saltLength          20,
> trailerField        trailerFieldBC (the byte 0xbc)

RSA Signature Generation & Verification

• The private key is the only one that can generate a signature that can be verified by the corresponding public key.
• The RSA operation can't handle messages longer than the modulus size. That means that if you have a 2048 bit RSA key, you would be unable to directly sign any messages longer than 256 bytes long. So signing the hash is just as good as signing the original message, without the length restrictions we would have if we didn’t use a hash
• RSASSA-PSS combines the RSASP1 and RSAVP1 primitives with the EMSA PSS encoding method.
• RSASSA-PKCS1-v1_5 : combines the RSASP1 and RSAVP1 primitives with the EMSA-PKCS1-v1_5 encoding method.

How to perform RSA Sign/Verify in

Go Lang	Python	Web Crypto(Javascript)