Newbie question

NikNot niknot at gmail.com
Mon Feb 19 01:27:24 CET 2007


I used libTomCrypt (cf.: http://libtom.org/) to implement something
similar. The data viewer executable contains (somewhat concealed)
private key, and data sets are encrypted using the public key of the
pair. (LibTomCrypt is much more flexible and easier to program against
than Libgcrypt when you are building your own applications that have
nthing to do with PGP). Piping data through GPG is not a solution that
our users would appreciate.

NikNot

On 2/9/07, Werner Koch <wk at gnupg.org> wrote:
> On Fri,  9 Feb 2007 12:01, antonio.bleile at seac02.it said:
>
> > - Does libcrypt do the job? I guess so...
>
> No.  Libgcrypt provides basic building blocks but has no support for
> any specific protocol.
>
> > - The CAD data may contain a fixed header, so an atacker knowing
> >   the header might use this info to easily get the private key?
>
> It all depends on the protocol used.  Getting the protocol right is
> not easy and thus the best advise I can give is to use an established
> protocol like OpenPGP or CMS (pkcs#7)
>
> For your application I would simply use a different file suffix or a
> special MIME type and pipe the data through gpg while reading.
>
>
> Salam-Shalom,
>
>    Werner
>
>
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users
>



More information about the Gnupg-users mailing list