Created
April 22, 2023 14:54
-
-
Save sander/16ef9c81db9906ae2c4e12e8fc1b67ec to your computer and use it in GitHub Desktop.
Choosing base points with ECDSA
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import org.bouncycastle.jce.ECNamedCurveTable; | |
| import org.bouncycastle.jce.interfaces.ECPublicKey; | |
| import org.bouncycastle.jce.provider.BouncyCastleProvider; | |
| import org.bouncycastle.jce.spec.ECParameterSpec; | |
| import org.bouncycastle.jce.spec.ECPublicKeySpec; | |
| import org.bouncycastle.math.ec.ECPoint; | |
| import java.security.*; | |
| import java.util.Base64; | |
| public class ChoosingBasePointsWithECDSA { | |
| static final ECParameterSpec P256 = ECNamedCurveTable.getParameterSpec("prime256v1"); | |
| static { | |
| Security.addProvider(new BouncyCastleProvider()); | |
| } | |
| static ECParameterSpec parameterSpec(ECPoint basePoint) { | |
| return new ECParameterSpec(P256.getCurve(), basePoint, P256.getN()); | |
| } | |
| static ECPoint point(PublicKey publicKey) { | |
| return ((ECPublicKey) publicKey).getQ(); | |
| } | |
| public static void main(String[] args) throws Exception { | |
| var message = "Message to be signed".getBytes(); | |
| var generator = KeyPairGenerator.getInstance("EC", "BC"); | |
| generator.initialize(P256); | |
| var root = generator.generateKeyPair(); | |
| generator.initialize(parameterSpec(point(root.getPublic()))); | |
| var pair = generator.generateKeyPair(); | |
| var signature = Signature.getInstance("SHA256withECDSA"); | |
| signature.initSign(pair.getPrivate()); | |
| signature.update(message); | |
| var result = signature.sign(); | |
| signature.initVerify(pair.getPublic()); | |
| signature.update(message); | |
| if (!signature.verify(result)) { | |
| throw new AssertionError("signature verification failed"); | |
| } | |
| var key = KeyFactory.getInstance("EC").generatePublic( | |
| new ECPublicKeySpec(point(pair.getPublic()), parameterSpec(point(root.getPublic()))) | |
| ); | |
| if (!key.equals(pair.getPublic())) { | |
| throw new AssertionError("could not reconstruct public key"); | |
| } | |
| var encoder = Base64.getEncoder(); | |
| System.out.println("Generator: " + encoder.encodeToString(point(root.getPublic()).getEncoded(false))); | |
| System.out.println("Public key: " + encoder.encodeToString(point(pair.getPublic()).getEncoded(false))); | |
| System.out.println("Signature: " + encoder.encodeToString(result)); | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Example outputs: