On Sun, Oct 7, 2012 at 2:56 AM, James Yonan <caprifinity@gmail.com> wrote:
>
>
> Raw RSA encryption is necessary as part of the challenge/response handshake
> of an SSL/TLS negotiation, if your side of the connection is using a cert as
> an authentication factor. It's essential for VPN implementations that layer
> on top of SSL/TLS transport and need to interoperate with an external key
> store. I enumerated the signature algs provided by the AndroidOpenSSL 1.0
> provider and I don't see any implementation for raw RSA. Some Java
> implementations include it as "NONEwithRSA", but I don't see it here.
>
OK, that makes sense. The current version indeed doesn't provide this, but it
looks like it has been added in AOSP master:
// Cipher
put("Cipher.RSA/ECB/NoPadding", OpenSSLCipherRawRSA.class.getName());
put("Alg.Alias.Cipher.RSA/None/NoPadding", "RSA/ECB/NoPadding");
Haven't tested it yet though. BTW, CyanogenMod 10 seems to pull from jb-dev,
so it's not in there yet either.
--
You received this message because you are subscribed to the Google
Groups "Android Developers" group.
To post to this group, send email to android-developers@googlegroups.com
To unsubscribe from this group, send email to
android-developers+unsubscribe@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/android-developers?hl=en
No comments:
Post a Comment