Sign data using private key on client-side (javascript)

javascript cryptography openssl digital-signature private-key
17,957

Solution 1

Found great signing tool. It implements RSA-SHA1 (works perfectly) and RSA-SHA256 (works strange), and allow both to generate signature using private key and to verify signature using certificate.

Solution 2

I've gone down the same road as you, you're probably better off implementing something like oAuth.

The problem with what you're proposing is that there's absolutely no reliable way of storing the private key on the client machine, nor of now securely getting the public key back to the server other than HTTPS (and if you're using HTTPS, what's the point of this?)

If you really want to continue, there are some implementations out there: http://shop-js.sourceforge.net/crypto2.htm

And you probably want something horribly annoying like PersistJS (http://pablotron.org/?cid=1557) to try and save the private key as long as possible.

Solution 3

The W3C Web Cryptography API may be able to help. Can I use indicates modern browsers now support it.

For additional digital signature support, look at GlobalSign/PKI.js

PKIjs is a pure JavaScript library implementing the formats that are used in PKI applications (signing, encryption, certificate requests, OCSP and TSP requests/responses). It is built on WebCrypto (Web Cryptography API) and requires no plug-ins. http://pkijs.org

Share:
17,957
Anatoliy
Author by

Anatoliy

Javascript developer

Updated on June 07, 2022

Comments

  • Anatoliy
    Anatoliy almost 2 years

    I know, it looks strange, but I need to sign some data on client-side using javascript only, no ajax backdoor to server-side openssl available. Could someone suggest some client-side solution to sign data using private key? Is it possible?

    Thanks.

  • Anatoliy
    Anatoliy about 13 years
    Thank you for suggestion. I have already played with this tool, this is for symmetric encryption/decryption, but I need asymmetric signing/verifying, like in nodejs crypto module: sign some data (not encode) using private key, and verify in another script (using native openssl verifier by certificate)
  • None
    None about 13 years
    Ahh, sorry, I mis-interpreted your question. Mind if I ask what the point is? Unless you have access to a key on the user's disk, all you're doing is validating that you're speaking with the same user that you previously did, and since the traffic is from client-server encryption performs the same task, doesn't it? Mozilla has a built-in crypto object if you have the luxury of telling people to use Firefox.
  • Anatoliy
    Anatoliy about 13 years
    My goal is demonstrate standalone client which can digitally sign some data. I dont care about security, safe storing private key. This is prototype for demonstrating purposes only.
  • Hosein Aqajani
    Hosein Aqajani over 7 years
    How can we use it? Is there any simple sample for signing?
  • user2677034
    user2677034 about 4 years
    @Mark Kahn given the choice of signing and keeping my private key in my machine or uploading the (decrypted) private key to a server to sign a document I'd choose the former.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

OpenSSL ECDSA sign and verify file
How to encrypt data using RSA, with SHA-256 as hash function and MGF1 as mask generating function?
Digital signature with Javascript
What is --openssl-legacy-provider in NPM?
How to decrypt AES with CryptoJS
decrypt using cryptojs not working
Compatibility of window.crypto.getRandomValues()
Decrypt with the public key using openssl in commandline
OpenSSL server cipher selection
What are the different types of instances for KeyFactory?