# Verify CSR signature script
This script verifies the signature of a signed SCMS (Certificated Signing Request) CSR.
The CSR is also known as enrollment request in SCMS. The signature uses ECDSA and SECP256R1 elliptic curve.

## Import libraries

In [53]:
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.primitives.asymmetric import ec, utils

## Input parameters

In [54]:
pubKeyStr = '03C0908F60CCE4A42A9E3D48B03BAAD6FB347A6E49DB176C0378096FA9626F6E08' # compressed-y-1 0x03
rStr = '036DEE89FB57BE191B35E36DF330752519EA5A4D938885AC72B86E08C6DC070D12' # compressed-y-1 0x03
sStr = 'F96BF61FF83878CE20E5058869A22E4D88B543A84FA12501C432C9FEA0C76B12'
data_oer = '03 83 81 A3 00 01 81 80 00 01 20 5E FE 63 44 81 09 54 65 73 74 31 32 33 57 4C 00 00 00 00 04 20 5D E3 85 86 00 02 83 01 01 80 03 48 01 01 80 80 01 03 00 01 82 00 03 20 40 95 00 03 20 40 97 01 00 80 80 83 C0 90 8F 60 CC E4 A4 2A 9E 3D 48 B0 3B AA D6 FB 34 7A 6E 49 DB 17 6C 03 78 09 6F A9 62 6F 6E 08 82 80 83'
data_oer = data_oer.replace(' ', '')
print(data_oer)

038381A3000181800001205EFE6344810954657374313233574C0000000004205DE385860002830101800348010180800103000182000320409500032040970100808083C0908F60CCE4A42A9E3D48B03BAAD6FB347A6E49DB176C0378096FA9626F6E08828083


## Create public key object

create a public key object using the hex-string provided as input

In [55]:
pubKey = ec.EllipticCurvePublicKey.from_encoded_point(ec.SECP256R1(), bytes.fromhex(pubKeyStr))

## Create the signature object

Create the signature object using raw r and s values

In [56]:
r_point = ec.EllipticCurvePublicKey.from_encoded_point(ec.SECP256R1(), bytes.fromhex(rStr))
print("r.x=",r_point.public_numbers().x)
r = r_point.public_numbers().x
# r = int(rStr, 16)
s = int(sStr, 16)
signature = utils.encode_dss_signature(r,s)

r.x= 49723562412429786751074050785103168763251956693105466807068590618184836910354


## Finally verify the signature
Prepare variables for verification. Convert data from string hex to byte array (note python 3 method is different from python 2).

In [57]:
# note it is mentioned it is suppose to be in DER encoding/format
data = bytes.fromhex(data_oer)
pubKey.verify(signature, data, ec.ECDSA(hashes.SHA256()))
print("verified!")

InvalidSignature: 