Collaborate Disseminate
How do you create a private-key/public-key pair without the public key’s information in the private key? So you should basically not be able to extract the public key from the private key. The private key should contain the bare minimum.
I… Continue reading Create "bare" pgp private key / Make private key without being able to generate the public key from it
I’m using an email service with encryption option and I need to send an encrypted email. So if I need my letter to be sent encrypted, I need to take my receiver’s public encryption key and apply it to my letter with an encryption function…. Continue reading Does my receiver have a public key for email encryption?
We want to replace traditional signature of papers by digital signature in our organazation. The process is simple:
A signs the data using his/her private key which is saved inside a secure RFID card. for this we need some biometric solut… Continue reading PKI digital signature technologies
I interact with some API’s that use PKA and I’m looking for the safest / best-practice way to store my secret key. The approaches I know are for example:
Create a 0500 access directory on my server
Within that directory, store the file co… Continue reading Best and safest way to store secret key used for PKA on server?
Because of all the problems associated with "roll-your-own cryptography", I am looking for an existing standard for standalone authentication using asymmetric keys.
Scenario/threat model
Machine-to-machine connections between ser… Continue reading Standard for public-key authentication (separate from channel encryption)
Because of all the problems associated with "roll-your-own cryptography", I am looking for an existing standard for standalone authentication using asymmetric keys.
Scenario/threat model
Machine-to-machine connections between ser… Continue reading Standard for public-key authentication (separate from channel encryption)
Trust anchors and (root) certificates authorities are often used interchangeably and it’s easy to think that they are the same thing. The answer in Can an intermediate CA be trusted like a self-signed root CA? contains some nice discussion… Continue reading Difference between trust anchors and certificate authorities
I’m trying to verify the fingerprint of the Qubes Master signing Key (QMSK) however, I’ve run into some inconsistent output.
For example:
Qubes Os website & web of trust shows after executing the following command:
Gpg –fingerprint ke… Continue reading When using gpg2 to verify Qubes, the pub is different
I don’t why we can decrypt the message using our private key if it’s encrypted using our public key.
If a message is encrypted using my public key, then how can I decrypt it using my private key? It doesn’t make sense at all.
The only way … Continue reading decryption of message using private key [duplicate]
What are some of the risks when encrypting “plaintext” with a receiver’s public key?
I have been Googling for hours, and been reading in the Computer Security Principles and Practice 3rd edition.
It’s NOT similar:
In PGP, why not just encrypt message with recipient’s public key? Why the meta-encryption?