Re: Reverse Encryption in .NET

From: james chou (jameschou2000_at_yahoo.com)
Date: 02/27/04

• Next message: Brian Webb: "Re: web.config ignored"
• Previous message: Yan-Hong Huang[MSFT]: "RE: PKCS#12 File to Sign Assemblies?"
• In reply to: Hernan de Lahitte: "Re: Reverse Encryption in .NET"
• Next in thread: Hernan de Lahitte: "Re: Reverse Encryption in .NET"
• Reply: Hernan de Lahitte: "Re: Reverse Encryption in .NET"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 26 Feb 2004 17:59:03 -0800

Thanks for your reply. As I understand, one way to authenticate a client
is to have server use client's public key to decrypt a token that is
encrypted with client's private key. That is exactly how a signature is
generated and verified except signature is generated by encrypting a
digest of a message. If a private key can be used to encrypt a digest of
a message, why can it be used to encrypt the message? I believe it is
technically possible. As matter of fact, I even found a well known
commercial PKI product that can do that. However, Windows cryptoAPI and
Java JCE(with default provider) don't provide this capability.

To keep the private key at server and distribute the public key to
clients doesn't seem to work. Every client can use the public key to
encrypt something and server will be able to decrypt it with no
problems. The server won't be able to tell which client is which unless
we have a keypair for each client. Since the public key is a public
information, everyone including unauthorized users can get it and use it
to access the server.

For my usage, looks like the signature will do it. However, I am
interested to the reason why reverse encryption is not provided in
Windows CryptoAPI and Java JCE.

Again, thanks for your information. Really appreciate that.

*** Sent via Developersdex http://www.developersdex.com ***
Don't just participate in USENET...get rewarded for it!

• Next message: Brian Webb: "Re: web.config ignored"
• Previous message: Yan-Hong Huang[MSFT]: "RE: PKCS#12 File to Sign Assemblies?"
• In reply to: Hernan de Lahitte: "Re: Reverse Encryption in .NET"
• Next in thread: Hernan de Lahitte: "Re: Reverse Encryption in .NET"
• Reply: Hernan de Lahitte: "Re: Reverse Encryption in .NET"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Explanation of SSH ... I am still unclear on how SSH works exactly. ... Client issues SSH command and names server ... "Shopper" says "server sends back its public host and server keys ... Surely there is only one public key it sends ... (comp.security.ssh) [NT] Dark Age of Camelot Man-In-The-Middle ... use of RSA public key cryptography and an RC4 based symmetric algorithm. ... Seeing the imminent release of code for cracking the game client (which ... At the beginning of each TCP session, the server sends a 1536 bit RSA ... void bytes_out(unsigned char *data, int len) ... (Securiteam) Re: Debian SSH server configuration ... I would like to configure a Debian server to only allow clients to ssh ... I don't want any client computers to be able to ssh into ... It sounds like what you are asking for is host based authentication, ... where the server check to make sure that it has the host public key ... (Debian-User) Re: A cryptography solution for a client/server winforms app ... good idea if you want to learn crypto. ... you control both the client and server, you don't even need to use a ... code the client to ignore certificate trust errors. ... encrypt the memory stream. ... (microsoft.public.dotnet.security) Re: Basics of key authentication ... The public key gets copied to the server, ... and the client decrypts it with its private key to prove he is who he ... and the digital signature to the server. ... (comp.security.ssh)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint