What is the padding type for Elliptic Curve Crypto

Question

After SecKeyGeneratePair for ECC, I try to encrypt plaintext by the public key. SecKeyEncrypt returns -4(errSecUnimplemented). I am not sure about the padding type is correct. I tried all the types in my xcode, they don't work as well. Can somebody explain why SecKeyEncrypt returns -4?

(NSData *)encrypt:(NSString *)plainTextString key:(SecKeyRef)publicKey {

    NSData *data = [plainTextString dataUsingEncoding:NSUTF8StringEncoding];

    size_t encryptedDataLength = SecKeyGetBlockSize(publicKey);

    NSMutableData *encryptedData = [[NSMutableData alloc]
                                    initWithLength:encryptedDataLength];

    OSStatus err = SecKeyEncrypt(publicKey,
                                 kSecPaddingOAEP,
                                 [data bytes],
                                 [data length],
                                 [encryptedData mutableBytes],
                                 &encryptedDataLength);
    NSLog(@"errEXX:  %ld", err);

    [encryptedData setLength:encryptedDataLength];


    return encryptedData;
}

score 2 · Answer 1 · edited May 23 '17 at 12:32

2

Apple's implementation only supports ECDSA, which can be used for signing but not encryption. For information about encrypting using elliptic curves using other schemes see Is it possible to use elliptic curve cryptography for encrypting data?

edited May 23 '17 at 12:32

Community

1
1

answered May 31 '14 at 22:21

Paul Kehrer

13,466
4
40
57

1

This is no longer true. See: kSecKeyAlgorithmECIESEncryptionCofactorVariableIVX963SHA512AESGCM – Erik Aronesty Jul 10 '18 at 20:45

What is the padding type for Elliptic Curve Crypto

1 Answers1

Linked