Search code examples
c#.netrsasha256

Encrypt String with SHA256 Algorithm and sign with private key and base64 string resulted in c#

I want to do a process of encryption for my application according to below list: 1- First I want encrypt my simple string with sha256 algorithm 2- second I want to sign Encrypted text with private key that I have 3- Third I want to convert the resulted byte array to base64 for passing as a header in my api request

below is my code that doesnt create a correct signed string:

byte[] signedBytes, originalData;
string temp_inBase64;
using (SHA256 hash = SHA256Managed.Create())
{
Encoding enc = Encoding.UTF8;
originalData = hash.ComputeHash(enc.GetBytes(message));
}
using (var rsa = new RSACryptoServiceProvider())
{
rsa.FromXmlString("xxxxxx"); //Final
try
{
signedBytes = rsa.SignData(originalData, new SHA256CryptoServiceProvider());
temp_inBase64 = Convert.ToBase64String(signedBytes);
}
catch (CryptographicException e)
{
Console.WriteLine(e.Message);
return null;
}
finally
{
rsa.PersistKeyInCsp = false;
}
}
return temp_inBase64;

the original data is my message that I passed to our function,, But the verified resulted not correct,,

can anyone help me?

Solution

  • The process of signing algorithm is true but if the resulted string doesnt work I suggested you to try this function for hashing sha256 and after that signing the byte array converted to base 64 with private key,,

    below is the sample code for your reuest:

     // Generate a new RSA key pair
            RSACryptoServiceProvider rsa = new RSACryptoServiceProvider();

            // Get the private key
            rsa.FromXmlString("xxxxx"); //Final ;
            

            // The string to sign
            string originalString = message;

            // Sign the string
            byte[] signedData = rsa.SignData(System.Text.Encoding.UTF8.GetBytes(originalString), CryptoConfig.MapNameToOID("SHA256"));



            // Verify the signature
            bool signatureVerified = rsa.VerifyData(System.Text.Encoding.UTF8.GetBytes(originalString), CryptoConfig.MapNameToOID("SHA256"), signedData);
            var temp_inBase64 = Convert.ToBase64String(signedData);

    as you can see at the end of the code I return base 64 format of signed data and dont use verified signed data,, The resulted message worked For me but you can test verified sign data,,

    best regard