Re: AES Questions From Another Dummy.
- From: "vedaal" <vedaal@xxxxxxxxx>
- Date: 1 Jun 2006 08:01:55 -0700
Larry Lindstrom wrote:
I've downloaded gnupg for Windows. I'm not sure
exactly what to do with it yet, the user manual is
in German.
the installation and interface is in English,
and is reasonably intuitive
install it on a test system and play with it for a while,
and ask here,
or on the gnupg users list, comp.security.pgp.discuss, or
alt.security.pgp
for any questions that arise
I'm getting the impression that Gnupg is a
command line tool. I'm looking for an API that
allows individual fields to be encrypted in the
database.
gnupg is command line,
(gpg4win just adds front-end gui's that spare the user from direct
command line entry,
gpg4win is primarily for you to evaluate how easy it would be to
incorporate into your user interface for your users who have no crypto
experience,
(*all* of it is open-source GPL)
but for your database and encryption of various fields,
you will need to stay with the command line
Even I can see shortcomings to this method,
what happens if they accidentally have the shift
lock on when they entered the key? They can
enter a lot of information that will be lost
when they try to decrypt it with the correct
key.
this is where your simultaneous backup encryption to your key and the
administrator key
will allow for recovery,
no matter what mistakes the user makes
(caveat:
beware phishing attacks of "i forgot my passphrase" ;-) )
What I'm asking for may well
be imposable.
It would be nice if each user could encrypt
data, but allow other selected users to see the
data.
actually, very easy to do:
when you set up gnupg,
add the option of '--show-session-key'
this displays the session key used for the symmetric part of the
encryption
when the user decrypts his/her own file
and wants to allow selected users to also be able to decrypt it,
then you could have your interface display the session key,
which the user could then copy and give to other selected users
they in turn could paste it into a field in your interface,
(entitled 'session-key' or something less descriptive but more catchy
;-) )
and your system could be set to decrypt that particular file
by using the gnupg option
'--override-session-key'
this would have to be done separately for each file,
which has both good and bad points
good:
allows users selectivity of which files they allow even other 'trusted'
users to view
bad:
tedious work for a user with many files and many friends
(btw,
these options were developed as a defense for gnupg users,
who, if *ordered* by authorities to 'decrypt' a file
can just provide a 'session key'
instead of giving up their passphrases or keypairs)
It would be nice if a person who is represented
in the database could view and edit their own
record over the web. Either with a browser or
using an executable I write.
again,
can be done without too much difficulty,
but here you run into a formidable area
where it is very easy to 'overlook' something
with consequent internet capture of sensitive data
see JLC' s comments above
it is an area of considerable legal liability and exposure,
so,
consultation would be advisable
(disclaimer :
not me ;-)
am just a pgp/gnupg hacker
and have no pretensions of mastery of java or ssl ;-) )
vedaal
.
- References:
- Re: AES Questions From Another Dummy.
- From: Larry Lindstrom
- Re: AES Questions From Another Dummy.
- Prev by Date: Re: Quick AES and related encryption question
- Next by Date: Re: Quick AES and related encryption question
- Previous by thread: Re: AES Questions From Another Dummy.
- Next by thread: Re: AES Questions From Another Dummy.
- Index(es):
Relevant Pages
|
