OAEP: In RSA cryptography, OAEP stands for Optimal Asymmetric Encryption Padding, a padding structure often used with RSA encryption. The OAEP algorithm accomplishes two goals:
- Add an element of randomness which can be used to transform the deterministic encryption (e.g. RSA encryption) to a probabilistic one.
- Defend against any partial decryption (or other information leakage) attacks against ciphertext by ensuring that the attacker cannot obtain any part of the plaintext without being able to invert the trap door one way permutation. See https://en.wikipedia.org/wiki/Optimal_asymmetric_encryption_padding.
OAEP is a type of Feistel Network.
CAdES-BES: CMS Advanced Electronic Signature - Basic Electronic Signature
PKCS#7:
see: https://boringssl.googlesource.com/boringssl/+/master/include/openssl/pkcs7.h
| // These functions are a compatibility layer over a subset of OpenSSL's PKCS#7 |
|
| // API. It intentionally does not implement the whole thing, only the minimum |
|
| // needed to build cryptography.io. |
|
| typedef void PKCS7_ENVELOPE; |
|
| typedef void PKCS7_DIGEST; |
|
| typedef void PKCS7_ENCRYPT; |
|
| // Unlike OpenSSL, the following fields are immutable. They filled in when the |
|
| // object is parsed and ignored in serialization. |
|
| PKCS7_ENVELOPE *enveloped; |
|
| PKCS7_SIGN_ENVELOPE *signed_and_enveloped; |
|
| PKCS7_ENCRYPT *encrypted; |
|
| // d2i_PKCS7 parses a BER-encoded, PKCS#7 signed data ContentInfo structure from |
|
| // |len| bytes at |*inp|. If |out| is not NULL then, on exit, a pointer to the |
|
| // result is in |*out|. Note that, even if |*out| is already non-NULL on entry, |
|
| // it will not be written to. Rather, a fresh |PKCS7| is allocated and the |
|
| // previous one is freed. On successful exit, |*inp| is advanced past the BER |
|
| // structure. It returns the result or NULL on error. |
|
| OPENSSL_EXPORT PKCS7 *d2i_PKCS7(PKCS7 **out, const uint8_t **inp, |
|
size_t len);
