| || |
Utilizing Hash algorithms for cryptographic application
Could somebody please help me with a problem I'm having with digital signatures.
I am trying to create test cases for testing digital signature (using the SHA1
hashing algorithm). I have never done that sort of testing and don't know where and how to start.
Could somebody help me out on figuring out how to test digital signatures?
Thanks in advance,
Re: Utilizing Hash algorithms for cryptographic application
One thing you might want to check is the Digital Signature Standard Validation System (DSSVS), which is used to test DSA/SHA-1 and also pure SHA-1 implementations. Check out the
Test User's Guide here. This has helped me quite a bit in framing my thinking on this kind of testing. Also check out the Secure Hash Standard document. This is basically the requirements specification and, as such, you can derive numerous test cases from it. (The one thing you always have to make sure of is that you are looking at the current version that is actually implemented.)
Also, when in doubt, always check out the RFCs. For example RFC2202 gives you a high-level idea of test cases. These (or specs like them) are usually what I use as a basis in tandem with the higher level specifications that describe the hashing and cryptographic mechanisms as well as any protocols required.