Elliptic Curve with Digital Signature Algorithm (ECDSA) implementation on BouncyCastle

java cryptography bouncycastle
22,010

Solution 1

owlstead is correct. And to elaborate a bit more, you can do this:

KeyPair pair = GenerateKeys();
Signature ecdsaSign = Signature.getInstance("SHA256withECDSA", "BC");
ecdsaSign.initSign(pair.getPrivate());
ecdsaSign.update(plaintext.getBytes("UTF-8"));
byte[] signature = ecdsaSign.sign();

And to verify:

Signature ecdsaVerify = Signature.getInstance("SHA256withECDSA", "BC");
ecdsaVerify.initVerify(pair.getPublic());
ecdsaVerify.update(plaintext.getBytes("UTF-8"));
boolean result = ecdsaVerify.verify(signature);

Solution 2

BouncyCastle is a provider: a set of classes which provides some cryptographic functionalities that applications are supposed to use through the generic API that Java comes with. See the Java Cryptography Architecture, especially the section on signatures, to see how to generate or verify a signature. Basically, you get a java.security.Signature instance (with the static getInstance() method), then you initialize it with either a private key (initSign(), to generate a signature) or a public key (initVerify(), to verify a signature). You then input the message data with one or several update() calls, and finally you call sign() or verify(), to generate or verify a signature.

Solution 3

You seem to be using Bouncy Castle mainly as provider. In that case you could simply use Signature.getInstance("SHA256withECDSA", "BC").

Share:
22,010
Yagiz
Author by

Yagiz

Updated on August 16, 2020

Comments

  • Yagiz
    Yagiz almost 4 years

    I am trying to implement ECDSA (Elliptic Curve Digital Signature Algorithm) but I couldn't find any examples in Java which use Bouncy Castle. I created the keys, but I really don't know what kind of functions I should use to create a signature and verify it.

    public static KeyPair GenerateKeys()
    throws NoSuchAlgorithmException, NoSuchProviderException, InvalidAlgorithmParameterException
{
    ECParameterSpec ecSpec = ECNamedCurveTable.getParameterSpec("B-571");
    KeyPairGenerator g = KeyPairGenerator.getInstance("ECDSA", "BC");
    g.initialize(ecSpec, new SecureRandom());
    return g.generateKeyPair();
}

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to verify if the private key matches with the certificate..?
Generating 128-bit keys with keytool
Can org.bouncycastle.openssl.PEMReader read java.security.PrivateKey?
What Java encryption algorithms should I use?
PBEWITHSHA256AND128BITAES-CBC-BC creating java.security.NoSuchAlgorithmException on RedHat 6.4
How to decrypt a signed pgp encrypted file?
AES encrypt/decrypt with Bouncy Castle provider
256bit AES/CBC/PKCS5Padding with Bouncy Castle
Self signed X509 Certificate with Bouncy Castle in Java
Reliable implementation of PBKDF2-HMAC-SHA256 for JAVA