[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ms-cryptoapi
Subject:    Re: What's in a signature?
From:       anand abhyankar <anand () QUERISOFT ! COM>
Date:       1997-09-27 5:12:56
[Download RAW message or body]


Hi John,

It is possible for the signer to include his certificate with the signed message. The \
signer can also include the entire or part of the certificate authentication chain. \
When you sign the message you must be including a certificate along with the actual \
signature.

The number of certificates to be included in the signed messages along with the  \
actual certificates can be specified in the CRYPT_SIGN_MESSAGE_PARA. If you dont want \
to include any certificate then try initializing the cMsgCert to zero.

Hope this helped.

Regards,

Anand Abhyankar
Software Development
Querisoft
anand@querisoft.com


John Boyer wrote:

> I had not expected the digital signatures generated by CryptSignMessage() to be so \
> big.  I am using 'detached' mode because I only want the signed hash.  Sure enough, \
> when I change my message size, the signature size doesn't change-- this is good.  \
> But, the signature size is 1334 bytes using MD5.  I might've been able to accept \
> this size, except that when I switched to SHA1, the signature size was 1336 bytes.  \
> Since SHA is 160 bits, compared to MD5's 128 bits, shouldn't the signature size \
> have grown by 4 bytes?  And what are the 1300 extra bytes for anyway? 
> John Boyer

----------------------------------------------------------------
Users Guide http://www.microsoft.com/sitebuilder/resource/mailfaq.asp
contains important info including how to unsubscribe.  Save time, search
the archives at http://microsoft.ease.lsoft.com/archives/index.html


[prev in list] [next in list] [prev in thread] [next in thread]