Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Encryption Keys


  • Please log in to reply
5 replies to this topic

#1 bigdog1100

bigdog1100

  • Members
  • 303 posts
  • OFFLINE
  •  
  • Local time:12:16 AM

Posted 19 March 2012 - 02:09 PM

So I am toying with the concept of encrypting my stuff. So I got me some Jetico products. My question is, where would normally a Private key be stored on my computer? While public certificate is in my documents, I don't know where private key is.

Motherboard: ASUS P8Z68-V LX; Processor: Intel i5 2500k; RAM 24GB: CORSAIR XMS3 8GB (2 x 4GB) 240-Pin DDR3 SDRAM DDR3 1600 (PC3 12800); CORSAIR Vengeance 16GB (2 x 8GB) 240-Pin DDR3 SDRAM DDR3 1600 (PC3 12800); Video Card: MSI AMD Radeon RX 470 Gaming X 4G GDDR5; Power Supply: OCZ ZS Series 650W 80PLUS Bronze High Performance Power Supply; Multi-card reader: Nippon Labs Delux 3.5" Internal All In One Card Reader/Writer with USB2.0 & eSATA Ports Model ICR-BB. Optical 1: LG GH22NS90; Optical 2:  ASUS BW-12B1ST; Fans: 3x80mm, CPU Cooling: XIGMATEK LOKI SD963. So there are total of 6 fans.
 


BC AdBot (Login to Remove)

 


#2 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,672 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:16 AM

Posted 19 March 2012 - 04:08 PM

Since you're talking about public and private keys, I assume you're using a product that uses asymmetric crypto. Is it BCTextEncoder you use?

Edited by Didier Stevens, 19 March 2012 - 04:09 PM.

Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#3 bigdog1100

bigdog1100
  • Topic Starter

  • Members
  • 303 posts
  • OFFLINE
  •  
  • Local time:12:16 AM

Posted 20 March 2012 - 08:05 AM

It is, as well as other applications.. I spoke with Jetico and they said it should be in the same directory as public key as a .p12 file.

Motherboard: ASUS P8Z68-V LX; Processor: Intel i5 2500k; RAM 24GB: CORSAIR XMS3 8GB (2 x 4GB) 240-Pin DDR3 SDRAM DDR3 1600 (PC3 12800); CORSAIR Vengeance 16GB (2 x 8GB) 240-Pin DDR3 SDRAM DDR3 1600 (PC3 12800); Video Card: MSI AMD Radeon RX 470 Gaming X 4G GDDR5; Power Supply: OCZ ZS Series 650W 80PLUS Bronze High Performance Power Supply; Multi-card reader: Nippon Labs Delux 3.5" Internal All In One Card Reader/Writer with USB2.0 & eSATA Ports Model ICR-BB. Optical 1: LG GH22NS90; Optical 2:  ASUS BW-12B1ST; Fans: 3x80mm, CPU Cooling: XIGMATEK LOKI SD963. So there are total of 6 fans.
 


#4 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,672 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:16 AM

Posted 20 March 2012 - 03:49 PM

If they store it in a directory, it means they don't use the Windows certificate stores (which you can view with the mmc + certificates snap-in).

Normal usage of asymmetric crypto is that it is only used to encrypt small bits of data. Usually, when an application is designed to encrypt messages and files with asymmetric crypto, what is done is that the message is encrypted with a symmetric algorithm, the key for that algorithm is generated randomly and it is this symmetric key that is encrypted with the asymmetric algorithm and then added to the message.

So to decrypt the message, you type your password, which unlocks your private key, which is then used to decrypt the symmetric key, which is then used to decrypt the message/file.

Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#5 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,672 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:16 AM

Posted 21 March 2012 - 04:16 AM

as a .p12 file.


FYI: a .p12 file uses the PKCS12 file format, which is designed to store private keys with certificates.
https://en.wikipedia.org/wiki/PKCS12

Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#6 bigdog1100

bigdog1100
  • Topic Starter

  • Members
  • 303 posts
  • OFFLINE
  •  
  • Local time:12:16 AM

Posted 23 March 2012 - 10:50 AM

Thank you for the information.

Motherboard: ASUS P8Z68-V LX; Processor: Intel i5 2500k; RAM 24GB: CORSAIR XMS3 8GB (2 x 4GB) 240-Pin DDR3 SDRAM DDR3 1600 (PC3 12800); CORSAIR Vengeance 16GB (2 x 8GB) 240-Pin DDR3 SDRAM DDR3 1600 (PC3 12800); Video Card: MSI AMD Radeon RX 470 Gaming X 4G GDDR5; Power Supply: OCZ ZS Series 650W 80PLUS Bronze High Performance Power Supply; Multi-card reader: Nippon Labs Delux 3.5" Internal All In One Card Reader/Writer with USB2.0 & eSATA Ports Model ICR-BB. Optical 1: LG GH22NS90; Optical 2:  ASUS BW-12B1ST; Fans: 3x80mm, CPU Cooling: XIGMATEK LOKI SD963. So there are total of 6 fans.
 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users