Closed enrico-kaack-comp closed 2 years ago
Open Questions:
Open Questions:
- support more Hash Algorithms other than sha256 (SHA512, SHA3_256, SHA3_512)?
- Signing standard RSASSA-PKCS1-V1_5-SIGN suitable or should RSASSA-PSS be used?
I think we should at least support sha512
. But on the otherhand everyone is free to use other algorithms as they can create their own Hasher
struct.
Signing standard RSASSA-PKCS1-V1_5-SIGN suitable or should RSASSA-PSS be used?
I'm no security expert so i will forward that question to @ThormaehlenFred
@jschicktanz You have pull request review open invite, please check
Sugestion: change Digest.Algorithm and Digest.Value to Digest.Digest = sha256:asd @mandelsoft for consistency. DONE: As discussed, leave it as two separat values.
DONE: write digest algorithm e.g. sha256 always lowercase
Consider changing rsa test key generation. Otherwise, merge on monday.
What this PR does / why we need it: Introduces normalisation and signing. Only implements Private Key based signing right now.
Which issue(s) this PR fixes: Fixes #
Special notes for your reviewer:
Release note: