ExDSA
Those basic cryptography operations allow the calculation and verify ExDSA signatures. ECDSA and EdDSA are supported.
Allowed users
Allowed
Required access scope
keymgmt:use:<KID>
where <KID> is a Key ID as 32 chars hexadecimal string
Sign
Sign a message
POST https://my.ence.do/api/crypto/exdsa/sign
Return a signature of the given message.
Headers
| Name | Type | Description |
|---|---|---|
Authorization* | String | Bearer JWT_TOKEN |
Content-Type* | String | application/json |
Request Body
| Name | Type | Description |
|---|---|---|
alg* | String | Algorithm to use (e.g. Ed25519ctx) |
ctx | String | Base64 encoded additional context data |
msg* | String | Data message to sign |
kid* | String | Key ID, 32 chars hex string |
Possible alg values
alg values| Algorithm | Description |
|---|---|
SHA256WithECDSA | Regard to NIST SP 800-186 |
SHA384WithECDSA | Regard to NIST SP 800-186 |
SHA512WithECDSA | Regard to NIST SP 800-186 |
Ed25519 | Regard to RFC8032 Section-5.1 |
Ed25519ph | Regard to RFC8032 Section-5.1 |
Ed25519ctx | Regard to RFC8032 Section-5.1 |
Ed448 | Regard to RFC8032 Section-5.2 |
Ed448ph | Regard to RFC8032 Section-5.2 |
Response data for successful operation
| Name | Type | Description |
|---|---|---|
| String | Base64 encoded signature |
Log entries
| Event | Result | Source |
|---|---|---|
LOG_TYPE_FAILED_SCOPE_CHECK | LOG_RESULT_FAILED | 403 |
LOG_TYPE_CRYPTO_EXDSA_SIGN | LOG_RESULT_ERROR | 400 |
LOG_TYPE_CRYPTO_EXDSA_SIGN | LOG_RESULT_FAILED | 406 |
LOG_TYPE_CRYPTO_EXDSA_SIGN | LOG_RESULT_OK | 200 |
Verify
Verify a message signature
POST https://my.ence.do/api/crypto/exdsa/verify
Verify the signature of the given message.
Headers
| Name | Type | Description |
|---|---|---|
Authorization* | String | Bearer JWT_TOKEN |
Content-Type* | String | application/json |
Request Body
| Name | Type | Description |
|---|---|---|
alg* | String | Algorithm to use (e.g. Ed25519ctx) |
ctx | String | Base64 encoded additional context data |
kid* | String | Key ID, 32 chars hex string |
msg* | String | Data message to verify |
sign* | String | Signature to validate return by |
Possible alg values
alg valuesCheck the list here.
Log entries
| Event | Result | Source |
|---|---|---|
LOG_TYPE_FAILED_SCOPE_CHECK | LOG_RESULT_FAILED | 403 |
LOG_TYPE_CRYPTO_EXDSA_VERIFY | LOG_RESULT_ERROR | 400 |
LOG_TYPE_CRYPTO_EXDSA_VERIFY | LOG_RESULT_FAILED | 406 |
LOG_TYPE_CRYPTO_EXDSA_VERIFY | LOG_RESULT_OK | 200 |
Last updated