# rsa_pss_pss_* 和 rsa_pss_rsae_* 的区别

## 对于公钥来说有区别

rsaEncryption类型公钥和签名：

id-RSASSA-PSS类型公钥和签名：

   RSASSA-PSS RSAE algorithms  Indicates a signature algorithm using
RSASSA-PSS [RFC8017] with mask generation function 1.  The digest
used in the mask generation function and the digest being signed
are both the corresponding hash algorithm as defined in [SHS].
The length of the salt MUST be equal to the length of the output
of the digest algorithm.  If the public key is carried in an X.509
certificate, it MUST use the rsaEncryption OID [RFC5280].

RSASSA-PSS PSS algorithms  Indicates a signature algorithm using
RSASSA-PSS [RFC8017] with mask generation function 1.  The digest
used in the mask generation function and the digest being signed
are both the corresponding hash algorithm as defined in [SHS].
The length of the salt MUST be equal to the length of the digest
algorithm.  If the public key is carried in an X.509 certificate,
it MUST use the RSASSA-PSS OID [RFC5756].  When used in
certificate signatures, the algorithm parameters MUST be DER
encoded.  If the corresponding public key's parameters are
present, then the parameters in the signature MUST be identical to
those in the public key.

02-14 308

06-08 2万+
08-04 3152
07-30 2539
11-13 905
01-15 1万+
08-03
09-09 4325
01-10 1万+
03-07 2万+
04-03 4946
07-11 3401
09-26 4610