0

I have a java program using an HSM that with the native API gives me and R and S value of an ECDSA signature which is just the two Big Integers. I need to take those Integers and create ASN.1 encoding. Any idea on how I could do that? I do have BouncyCastle up and running but, I am not familiar with the options available to me.

Joshua Faust
  • 306
  • 2
  • 16

1 Answers1

4

A small example to illustrate:

import org.bouncycastle.asn1.ASN1Integer;
import org.bouncycastle.asn1.DERSequence;

import javax.xml.bind.DatatypeConverter;
import java.math.BigInteger;

public class Main {

    public static void main(String[] args) throws Exception {
        BigInteger r = new BigInteger("29128391823901823918293108120938102381912839182390182391829310812093810238199");
        BigInteger s = new BigInteger("38663726871681756650018917824777578348866372687168175665001891782477757834811");

        ASN1Integer asn1R = new ASN1Integer(r);
        ASN1Integer asn1S = new ASN1Integer(s);

        DERSequence seq = new DERSequence(new ASN1Integer[]{asn1R, asn1S});
        byte[] encoded = seq.getEncoded();
        System.out.println(DatatypeConverter.printHexBinary(encoded));
    }
}
President James K. Polk
  • 40,516
  • 21
  • 95
  • 125
  • If you somehow get bytes instead of integers then make sure you set the sign bit correctly, e.g. by using `new BigInteger(1, [byte array])` where the 1 indicates that an unsigned encoding should be assumed. – Maarten Bodewes Aug 03 '17 at 07:38