JDK-6809955 : signatures created with SunMSCAPI can't be verified with SunJCE
  • Type: Bug
  • Component: security-libs
  • Sub-Component: javax.crypto
  • Affected Version: 6
  • Priority: P3
  • Status: Closed
  • Resolution: Duplicate
  • OS: generic
  • CPU: generic
  • Submitted: 2009-02-25
  • Updated: 2011-05-09
  • Resolved: 2011-05-09
Related Reports
Duplicate :  
JDK-6888925 - SunMSCAPI's Cipher can't use RSA public keys obtained from other sources.
Duplicate :  
JDK-6809952 - cryptographic signatures created with the "RSA/ECB/PKCS1Padding" algorithm from SunMSCAPI provider c
Description
The CU wants to know why cryptographic signatures created with the "RSA/ECB/PKCS1Padding" algorithm using the SunMSCAPI provider (available with JRE 6) cannot be verified using the SunJCE provider. Assume it is a bug
Comments
EVALUATION (Adding attachment). In both the bug's synopsis and your description below it's stated that "SIGNATURES" can't be verified. However, you're using a Cipher instead of the Signature API, which is the wrong API. When you use a Cipher: encrypt using a public key decrypt using a private key Example code: encrypt using a private key. (which is wrong) When you use a Signature: sign using a private key verify using a public key Example code: not using Signatures. I'm still not sure what you're trying to do, but if you're really trying to sign something, please use the proper API.
07-10-2009