Probabilistic Signature Scheme (PSS) is a
cryptographic
Cryptography, or cryptology (from grc, , translit=kryptós "hidden, secret"; and ''graphein'', "to write", or ''-logia'', "study", respectively), is the practice and study of techniques for secure communication in the presence of adver ...
signature scheme designed by
Mihir Bellare
Mihir Bellare is a cryptographer and professor at the University of California San Diego. He has published several seminal papers in the field of cryptography (notably in the area of provable security), many of which were co-written with Phillip ...
and
Phillip Rogaway
Phillip Rogaway is a professor of computer science at the University of California, Davis. He graduated from Beverly Hills High School, and later earned a BA in computer science from UC Berkeley and completed his PhD in cryptography at MIT, in ...
.
RSA-PSS is an adaptation of their work and is standardized as part of
PKCS#1 v2.1. In general, RSA-PSS should be used as a replacement for RSA-PKCS#1 v1.5.
Design
PSS was specifically developed to allow modern methods of security analysis to prove that its security directly relates to that of the
RSA problem
In cryptography, the RSA problem summarizes the task of performing an RSA private-key operation given only the public key. The RSA algorithm raises a ''message'' to an ''exponent'', modulo a composite number ''N'' whose factors are not known. Th ...
. There is no such proof for the traditional PKCS#1 v1.5 scheme.
Implementations
*
OpenSSL
OpenSSL is a software library for applications that provide secure communications over computer networks against eavesdropping or need to identify the party at the other end. It is widely used by Internet servers, including the majority of HTT ...
*
wolfSSL
wolfSSL is a small, portable, embedded SSL/TLS library targeted for use by embedded systems developers. It is an open source implementation of TLS (SSL 3.0, TLS 1.0, 1.1, 1.2, 1.3, and DTLS 1.0, 1.2, and 1.3) written in the C programming lang ...
GnuTLS
References
[
{{cite web
, url=http://grouper.ieee.org/groups/1363/P1363a/contributions/pss-submission.pdf
, title=PSS: Provably Secure Encoding Method for Digital Signatures
, first1=Mihir , last1 = Bellare , first2 = Phillip , last2 = Rogaway
, archiveurl = https://web.archive.org/web/20170810025803/http://grouper.ieee.org/groups/1363/P1363a/contributions/pss-submission.pdf
, archivedate = 2017-08-10
]
External links
Raising the standard for RSA signatures: RSA-PSSRFC 4056: Use of the RSASSA-PSS Signature Algorithm in Cryptographic Message Syntax (CMS)RFC 5756: Updates for RSAES-OAEP and RSASSA-PSS Algorithm ParametersRFC 8017: PKCS #1: RSA Cryptography Specifications Version 2.2
Cryptography
Digital signature schemes