Probabilistic signature scheme
Probabilistic Signature Scheme (PSS) is a cryptographic signature scheme designed by Mihir Bellare and Phillip Rogaway.
RSA-PSS is an adaptation of their work and is standardized as part of PKCS#1 v2.1. In general, RSA-PSS should be used as a replacement for RSA-PKCS#1 v1.5.
Design
PSS was specifically developed to allow modern methods of security analysis to prove that its security directly relates to that of the RSA problem. There is no such proof for the traditional PKCS#1 v1.5 scheme.
Implementations
- OpenSSL{{cite web | title=RSA-PSS | website=OpenSSL Documentation | url=https://docs.openssl.org/master/man7/RSA-PSS/ | access-date=April 7, 2025}}
- wolfSSL{{Cite news|url=https://www.wolfssl.com/docs/wolfssl-changelog/|title=wolfSSL Changelog {{!}} wolfSSL Embedded SSL/TLS Library Documentation|work=wolfSSL|access-date=2018-10-05|language=en-US}}
- [https://www.gnutls.org/documentation.html GnuTLS]
References
{{cite web
| url=http://grouper.ieee.org/groups/1363/P1363a/contributions/pss-submission.pdf
| title=PSS: Provably Secure Encoding Method for Digital Signatures
| first1=Mihir | last1 = Bellare | first2 = Phillip |last2 = Rogaway
| archiveurl = https://web.archive.org/web/20170810025803/http://grouper.ieee.org/groups/1363/P1363a/contributions/pss-submission.pdf
| archivedate = 2017-08-10
}}
External links
- [https://web.archive.org/web/20170810025803/http://grouper.ieee.org/groups/1363/P1363a/contributions/pss-submission.pdf Raising the standard for RSA signatures: RSA-PSS]
- [https://tools.ietf.org/html/rfc4056 RFC 4056: Use of the RSASSA-PSS Signature Algorithm in Cryptographic Message Syntax (CMS)]
- [https://tools.ietf.org/html/rfc5756 RFC 5756: Updates for RSAES-OAEP and RSASSA-PSS Algorithm Parameters]
- [https://tools.ietf.org/html/rfc8017 RFC 8017: PKCS #1: RSA Cryptography Specifications Version 2.2]