RSA Sign with PKCS8 Encrypted Key

Demonstrates how to load a private key from an encrypted PKCS8 file and create an RSA digital signature.

Download 32-bit Chilkat RSA ActiveX (.msi)

Download All 32-bit Chilkat ActiveX Components (.zip)

Download All 64-bit Chilkat ActiveX Components (.zip)

<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<%
set pkey = Server.CreateObject("Chilkat.PrivateKey")

'  Load the private key from an RSA PEM file:
pkey.LoadPkcs8EncryptedFile "privateKey.key","myPassword"

'  Get the private key in XML format:
pkeyXml = pkey.GetXml()

set rsa = Server.CreateObject("Chilkat.Rsa")

'  Any string argument automatically begins the 30-day trial.
success = rsa.UnlockComponent("30-day trial")
If (success <> 1) Then
    Response.Write "<pre>" & Server.HTMLEncode("RSA component unlock failed") & "</pre>"

End If

'  Import the private key into the RSA component:
success = rsa.ImportPrivateKey(pkeyXml)
If (success <> 1) Then
    Response.Write "<pre>" & Server.HTMLEncode(rsa.LastErrorText) & "</pre>"

End If

'  This example will sign a string, and receive the signature
'  in a hex-encoded string.  Therefore, set the encoding mode
'  to "hex":
rsa.EncodingMode = "hex"

'  If some other non-Chilkat application or web service is going to be verifying
'  the signature, it is important to match the byte-ordering.
'  The LittleEndian property may be set to 1
'  for little-endian byte ordering,
'  or 0  for big-endian byte ordering.
'  Microsoft apps typically use little-endian, while
'  OpenSSL and other services (such as Amazon CloudFront)
'  use big-endian.
rsa.LittleEndian = 0

strData = "This is the string to be signed."

'  Sign the string using the sha-1 hash algorithm.
'  Other valid choices are "md2", "sha256", "sha384", "sha512",  and "md5".
hexSig = rsa.SignStringENC(strData,"sha-1")

Response.Write "<pre>" & Server.HTMLEncode( hexSig) & "</pre>"
%>
</body>
</html>