Collaborate Disseminate
I am using GnuPG. When gpg encrypt is called from the command line, how is a key chosen to do the encryption? It appears to me that -r, or –recipient, supplies a user id and that is the simple answer. I believe all of the ex… Continue reading When gpg encrypt is called from the command line, how is a key chosen to do the encryption?
I want my native applications (android/ios) to have a keypair (RSA or ECIES) so that certain data on requests to my API can be encrypted. I want each client to have a unique keypair. The device will register that keypair with… Continue reading Reason to generate encryption keypair server side rather than on device?
When I enabled BitLocker on my system-drive, I wasn’t asked to select an unlock-method. I didn’t have to enter any new passwords/keys. I only selected a few options for the encryption, and the process completed.
I’m not very familiar with… Continue reading Is User Account Login Related to BitLocker Encryption Key
I am building a system that at some point requires a 256 bit key AES key. I used to feed passphrases through PBKDF2 to derive a key, but then I decided to generate random passwords of 12 words selected out of a set of 2048 wo… Continue reading Deriving a key with PBKDF2 from RFC1751 output
I’d like to derive an elliptic curve private key from input keying material (a master key). Is this possible?
Attempts
Node’s crypto function, crypto.generateKeyPair does not accept input keying material, and crypto.createP… Continue reading Deriving EC Private Key from input keying material
I need to store a key (symmetric-key cryptography) within my C++ application binary (based on OpenCV) so that the key as unidentifiable as possible. Can someone help me choose the key so that is secure and it will be difficul… Continue reading Prevent finding key in C++ application binary
Assuming I have a secret key of sufficient length and entropy (I get to decide the length and have a good random source).
I would like to generate 256 length keys by hashing the root key with the name of each key, ex:
key1 = sha256(root… Continue reading Is sha256 a good function to derive 256 bit keys from a secret of sufficient length and entropy?
Back in the day, retail software was shipped on physical CDs that often had a printed “CD key” label affixed. The (usually alphanumeric) key on the label was unique to that particular copy of the product, and it needed to be … Continue reading Were software "CD key" schemes backdoored or simply misdesigned?
Having read the ssh-keygen man page, i saw the ‘-h’ flag and the following:
ssh-keygen supports two types of certificates: user and host. User
certificates authenticate users to servers, whereas host certificates
aut… Continue reading What is the difference between host and client ssh key generation?
When an SSL certificate is expiring, does generating a new key and new CSR with the same name as the host, replace the existing one or cause any issue?
Because I used the same name, and looks like the SSL sign is not working… Continue reading SSL certificate renewal process