Cryptology ePrint Archive: Report 2006/011

Formal Proof for the Correctness of RSA-PSS

Christina Lindenberg and Kai Wirt and Johannes Buchmann

Abstract: Formal verification is getting more and more important in computer science. However the state of the art formal verification methods in cryptography are very rudimentary. This paper is one step to provide a tool box allowing the use of formal methods in every aspect of cryptography. In this paper we give a formal specification of the RSA probabilistic signature scheme (RSA-PSS) [4] which is used as algorithm for digital signatures in the PKCS #1 v2.1 standard [7]. Additionally we show the correctness of RSA-PSS. This includes the correctness of RSA, the formal treatment of SHA-1 and the correctness of the PSS encoding method. Moreover we present a proof of concept for the feasibility of verification techniques to a standard signature algorithm.

Category / Keywords: cryptographic protocols / specification, verification, digital signature

Date: received 10 Jan 2006

Contact author: wirt at informatik tu-darmstadt de

Available format(s): PDF | BibTeX Citation

Version: 20060110:201041 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]