Converts a DER-encoded ECDSA signature to R||S format.

R||S format concatenates the r and s integer values, each padded to the curve’s coordinate size with leading zeros.

Parameters

• der: A DER-encoded ECDSA signature
• curve: The elliptic curve used for the signature

Returns

Ok(rs_signature) on success, Error(Nil) if the DER is malformed or contains trailing garbage.

Example

import kryptos/ec
import kryptos/ecdsa
import kryptos/hash

let #(private_key, _public_key) = ec.generate_key_pair(ec.P256)
let der_sig = ecdsa.sign(private_key, <<"hello":utf8>>, hash.Sha256)
let assert Ok(rs_sig) = ecdsa.der_to_rs(der_sig, ec.P256)

Converts an R||S format signature to DER encoding.

Parameters

• rs: An R||S format signature (2 * coordinate_size bytes)
• curve: The elliptic curve used for the signature

Returns

Ok(der_signature) on success, Error(Nil) if input length is invalid.

Example

import kryptos/ec
import kryptos/ecdsa
import kryptos/hash

let #(private_key, _public_key) = ec.generate_key_pair(ec.P256)
let rs_sig = ecdsa.sign_rs(private_key, <<"hello":utf8>>, hash.Sha256)
let assert Ok(der_sig) = ecdsa.rs_to_der(rs_sig, ec.P256)

Signs a message using ECDSA with the specified hash algorithm.

The message is hashed internally using the provided algorithm before signing. Signatures may be non-deterministic depending on platform (Erlang uses random nonces, some platforms may use deterministic RFC 6979 nonces).

Parameters

• private_key: An elliptic curve private key from ec.generate_key_pair
• message: The message to sign (any length)
• hash: The hash algorithm to use (e.g., Sha256, Sha384, Sha512)

Returns

A DER-encoded ECDSA signature.

Signs a message and returns the signature in R||S format (IEEE P1363).

In R||S format, the signature is the concatenation of r and s values, each padded to the curve’s coordinate size.

Parameters

• private_key: An elliptic curve private key
• message: The message to sign
• hash: The hash algorithm to use

Returns

An R||S format signature (2 * coordinate_size bytes).

Example

import kryptos/ec
import kryptos/ecdsa
import kryptos/hash

let #(private_key, _public_key) = ec.generate_key_pair(ec.P256)
let signature = ecdsa.sign_rs(private_key, <<"hello":utf8>>, hash.Sha256)

Verifies an ECDSA signature against a message.

The message is hashed internally using the provided algorithm before verification. The same hash algorithm used during signing must be used for verification.

Parameters

• public_key: The elliptic curve public key corresponding to the signing key
• message: The original message that was signed
• signature: The DER-encoded signature to verify
• hash: The hash algorithm used during signing

Returns

True if the signature is valid, False otherwise.

Verifies an R||S format signature against a message.

The R||S format is the concatenation of r and s values, each padded to the curve’s coordinate size.

Parameters

• public_key: The public key corresponding to the signing key
• message: The original message that was signed
• signature: The R||S format signature to verify
• hash: The hash algorithm used during signing

Returns

True if the signature is valid, False otherwise.

Example

import kryptos/ec
import kryptos/ecdsa
import kryptos/hash

let #(private_key, public_key) = ec.generate_key_pair(ec.P256)
let message = <<"hello":utf8>>
let signature = ecdsa.sign_rs(private_key, message, hash.Sha256)
let valid = ecdsa.verify_rs(public_key, message, signature, hash.Sha256)
// valid == True