Re: Is there any asymmetric crypto API to allow decrypting a message but not encrypting it?
From: Mickey Williams (my)
Date: Fri, 3 Oct 2003 16:01:46 -0700
I'm not sure I understand what you're asking for. Doesn't everyone have the
public key? Isn't its public availablility the very essence of asymmetric
encryption? If you're worried that an arbitrary client might be able to sign
a plain-text message and spoof the producer's identity, provide a signature.
-- Mickey Williams Author, "Microsoft Visual C# .NET Core Reference", MS Press www.servergeek.com "Andy Chau" <firstname.lastname@example.org> wrote in message news:uFuj5qeiDHA.2536@TK2MSFTNGP10.phx.gbl... > I try to use RSA to implement the following scheme but wasn't sucessful. > > Sever encrypt a message using a public key, the client decrpyt the message > using a private key. > > I don't want the client to be able to encrypt a message. > > However, using the Crypto API I need to pass in both the private and public > key pairs in order to decrypt the message. > When the client has both private and public key, it can just use the public > key to encrypt the message which is what I don't want to allow. > > Does anyone know if there is any asymmetric crypto API to implmenet this > scheme? > > Thanks very much in advance, > > Andy > > >