GnuPG instead of CryptoAPI

Werner Koch
Wed Sep 17 11:18:03 2003

On Tue, 16 Sep 2003 23:52:09 +0200, Jeroen  said:

> Is it possible to use GnuPG instead of CryptoAPI *and* encrypting the
> files on the fly? If so, this is a opensource alternative for PGPdisk.

No this is not possible.  For disk encryptioj you want to have random
access to the data and not merely sequentiell processing as OpenPGP
provides.  Thus the protocol is not suitable.

OTOH, if you want to add a public key layer on top of the already
existing symmetric disk encryption, you can hack something together
with GnuPG using --show-session-key and --override-session-key.  I
don't know wether this makes any sense becuase you need to store the
secret key somewhere - well you can do it with an external token - but
then any random symmetric key would do.



Werner Koch                                      <>
The GnuPG Experts                      
Free Software Foundation Europe