File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
http://aspose.com/file-tools
The moose likes Other JSE/JEE APIs and the fly likes DSA - Signature failed Big Moose Saloon
  Search | Java FAQ | Recent Topics
Register / Login
JavaRanch » Java Forums » Java » Other JSE/JEE APIs
Reply Bookmark "DSA - Signature failed" Watch "DSA - Signature failed" New topic
Author

DSA - Signature failed

Murali Sekhar
Greenhorn

Joined: Mar 11, 2002
Posts: 4
posted private message
0
Quote
The following program failed in verifying. Can somebody tell me where I am doing mistake...
import java.io.*;
import java.security.*;
import java.security.interfaces.*;
import sun.misc.BASE64Encoder;
import java.security.spec.*;
public class JCETest {
public static void main(String[] args) throws Exception {
FileReader fr = new FileReader("c:/ebmessage.xml");
BufferedReader br = new BufferedReader(fr);
String message = "";
String record = "";
while((record = br.readLine()) != null)
{
record = br.readLine();
message+=record;

}

byte[] messageBytes = message.getBytes("UTF8");

KeyPairGenerator kpg = KeyPairGenerator.getInstance("DSA","SUN");
SecureRandom raandom = SecureRandom.getInstance("SHA1PRNG", "SUN");
kpg.initialize(1024, raandom);
System.out.println("Generating a key pair...");
KeyPair mykeyPair = kpg.generateKeyPair();
System.out.println("Done generating keys.\n");

Signature dsa = Signature.getInstance("SHA1withDSA", "SUN");

DSAPrivateKey priKey = (DSAPrivateKey)mykeyPair.getPrivate();
dsa.initSign(priKey);
dsa.update(messageBytes);
byte[] sign = dsa.sign();


DSAPublicKey pKey = (DSAPublicKey)mykeyPair.getPublic();
dsa.initVerify(pKey);
//dsa.update(sign);
boolean verifies = dsa.verify(sign);

System.out.println("signature verifies: " + verifies);


}
}
Thomas Paul
mister krabs
Ranch Hand

Joined: May 05, 2000
Posts: 13974
posted
0
Quote
Murali, please update your display name to meet the requirements of JavaRanch. You must use you real first anme -space - your real last name.
As to your question:
You aren't using the signatures correctly. Let's think about what you are trying to do. You have a message and you want to verify that it came from Al Capone. Al Capone sends you his public cipher and a message that can only be generated with Al Capone's private cipher. You want to verify that the message that came in the clear is identical to Al's secret message. If they are then the original message really did come from Al and you can make your Valetine's Day plans.
How to do that? Change this line:
//dsa.update(sign);
to
dsa.update(messageBytes);
happy encrypting!

Associate Instructor - Hofstra University
Amazon Top 750 reviewer - Blog - Unresolved References - Book Review Blog
Murali Sekhar
Greenhorn

Joined: Mar 11, 2002
Posts: 4
posted private message
0
Quote
Thanx Paul,
Its working.great!
Murali
 
 
subject: DSA - Signature failed
 
Threads others viewed
Exception errror in a program
Writing to File
Create .txt file
Unusual FileNotFoundException error
Return Token with Private/Public keys
IntelliJ Java IDE