Signature |
Padding scheme of the cryptographic signature algorithm
The signature algorithm is defined by the signing certificate's key type. For example, RSA or ECDSA. For some keys, e.g. RSA keys, there are different padding algorithms. Some cryptographic providers let you set this padding algorithm. However, this only has an effect on signatures created by the cryptographic provider itself. All signed data acquired from external sources may use other signing algorithms; more specifically, the issuer certificates of the trust chain, the time-stamp’s signature, or those used for the revocation information (CRL, OCSP). It is recommended to verify that the algorithms of all signatures provide a similar level of security.public enum SignaturePaddingType
Member name | Value | Description |
---|---|---|
Default | 0 | Default padding scheme The default padding scheme. Used for the Ecdsa signature algorithm. |
RsaRsa | 1 | RSA with PKCS#1 padding scheme Padding scheme for RSA keys that corresponds to the RsaRsa signature algorithm. |
RsaSsaPss | 2 | RSA with Probabilistic Signature Scheme (PSS) Padding scheme for RSA keys that corresponds to the RsaSsaPss signature algorithm. |