-
Notifications
You must be signed in to change notification settings - Fork 205
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Incorrect naming for SPKI #208
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
There is no such thing as a PKCS#8 public key. What is used when decoding a "PKCS#8 public key" in this library is called a "SubjectPublicKeyInfo" or "spki" for short.
The PKCS#8 only describes (possibly encrypted) private keys. As these private keys also contain a key type / algorithm they have the same role as SubjectPublicKeyInfo (this is why they don't need the algorithm description in the PEM header, i.e. PRIVATE / PUBLIC KEY instead of RSA PRIVATE / PUBLIC KEY).
I think it would be best to add a
"SubjectPublicKeyInfo"
or"spki"
encoding / decoding format for the Import/Export keysfunctionality, and explain that "pkcs8" can also be used to encode / decode formats for backwards compatibility.
The SubjectPublicKeyInfo format is specified in the X.509 specifications (which is why they are known as
"X509"
in Java, but I think"spki"
is better and more commonplace). Of course, the BIT STRING simply contains the PKCS#1 encoded public key for RSA.The text was updated successfully, but these errors were encountered: