Encoding Method for Signature with Appendix – Probabilistic Signature Scheme
E830588
Encoding Method for Signature with Appendix – Probabilistic Signature Scheme (EMSA-PSS) is a cryptographic message encoding method used with RSA-PSS digital signatures to provide strong security against forgery through probabilistic padding.
Statements (45)
| Predicate | Object |
|---|---|
| instanceOf |
cryptographic encoding method
ⓘ
digital signature padding scheme ⓘ message encoding method ⓘ |
| abbreviation | EMSA-PSS NERFINISHED ⓘ |
| appliesTo | messages of bounded length relative to RSA modulus ⓘ |
| category |
digital signatures
ⓘ
public-key cryptography ⓘ |
| comparedTo | deterministic PKCS #1 v1.5 encoding ⓘ |
| definedBy | RSA Laboratories NERFINISHED ⓘ |
| hasAdvantage |
prevents deterministic signature patterns
ⓘ
reduces risk of signature replay analysis ⓘ |
| hasComponent |
data block DB
ⓘ
encoded message EM ⓘ hash H ⓘ trailer field ⓘ |
| hasDesignGoal | tight security reduction to RSA assumption ⓘ |
| hasProperty |
collision resistance dependent on hash function
ⓘ
compatible with various hash algorithms ⓘ message encoding with randomness ⓘ non-deterministic output for same message and key ⓘ probabilistic padding ⓘ supports configurable salt length ⓘ |
| hasPurpose | provide strong security against forgery ⓘ |
| hasStep |
combine hash output and padding to form encoded message
ⓘ
generate mask using mask generation function ⓘ hash the message and salt ⓘ |
| relatedTo |
EMSA-PKCS1-v1_5
NERFINISHED
ⓘ
Probabilistic Signature Scheme ⓘ |
| requires | random salt generation ⓘ |
| securityBasedOn |
RSA inversion problem
ⓘ
properties of underlying hash function ⓘ |
| securityGoal | EUF-CMA security for RSA-PSS ⓘ |
| specifiedAs | encoding method for signature with appendix ⓘ |
| standardizedIn |
PKCS #1 v2.1
NERFINISHED
ⓘ
PKCS #1 v2.2 NERFINISHED ⓘ |
| usedIn |
RSA-PSS signature generation
NERFINISHED
ⓘ
RSA-PSS signature verification NERFINISHED ⓘ |
| usedInStandard |
TLS (when RSA-PSS is used)
NERFINISHED
ⓘ
X.509 certificates with RSA-PSS signatures ⓘ |
| usedWith |
RSA digital signatures
NERFINISHED
ⓘ
RSA-PSS NERFINISHED ⓘ |
| usesComponent |
hash function
ⓘ
mask generation function ⓘ message representative ⓘ salt value ⓘ |
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.
EMSA-PSS
→
hasFullName
→
Encoding Method for Signature with Appendix – Probabilistic Signature Scheme
ⓘ