Why signature value is getting changed each time on applying signature using RSA 256 algorithm?

Question

1.00/5 (1 vote)

See more:

The signature value getting generated for a file is getting changed each time on applying signature using RSA 256 algorithm.

What I have tried:

RSACryptoServiceProvider rsa = new RSACryptoServiceProvider(); // Creates a new RANDOM key.
     RSAParameters privatekey = rsa.ExportParameters(true);
     RSAParameters publickey = rsa.ExportParameters(false);







     string sign = SignData1(content, privatekey);

public static string SignData1(string message, RSAParameters privateKey)
    {
        //// The array to store the signed message in bytes
        byte[] signedBytes;
        using (var rsa = new RSACryptoServiceProvider())
        {
            //// Write the message to a byte array using UTF8 as the encoding.
            var encoder = new UTF8Encoding();
            byte[] originalData = encoder.GetBytes(message);

            try
            {
                //// Import the private key used for signing the message
                rsa.ImportParameters(privateKey);

                //// Sign the data, using SHA512 as the hashing algorithm 
                signedBytes = rsa.SignData(originalData, CryptoConfig.MapNameToOID("SHA256"));
            }
            catch (CryptographicException e)
            {
                Console.WriteLine(e.Message);
                return null;
            }
            finally
            {
                //// Set the keycontainer to be cleared when rsa is garbage collected.
                rsa.PersistKeyInCsp = false;
            }
        }
        //// Convert the a base64 string before returning
       // return signedBytes;
        return Convert.ToBase64String(signedBytes);
    }

Posted 1-May-17 4:44am

Alex2 101

Updated 1-May-17 20:48pm

Add a Solution

Comments

Richard MacCutchan 1-May-17 10:49am

I would guess it has something to do with the random key.

Dave Kreskowiak 1-May-17 12:53pm

What part of "// Creates a new RANDOM key." do you not understand?

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

David A. Gray · Answer 1 · 2017-05-01T20:48:00

If it didn't change every time you generated it, breaking it would be vastly simpler. Good cryptographic ciphers, whether used for signatures or to encrypt whole documents, start with a "salt" value that is expected to change every time the cipher is used, even with the same key. The degree to which the salt is truly random is called it entropy, and a great deal of research has focused on ways to get more entropy (randomness) into the process.

For example, a good salt generator might find a way to combine several independent sources of entropy in such a way that whole is at least equal to the sum of its parts.

For example, an early AES (Rijndael) implementation published by Dr. Brian Gladman used values from the CPU clock as a source of entropy.