NIST 800-57 compatible unattended encryption?
Damien Goutte-Gattat
dgouttegattat at incenp.org
Wed Jan 2 10:47:47 CET 2019
Hi,
On Wed, Jan 02, 2019 at 04:02:03PM +1100, gnupg at raf.org wrote:
> For some dumb reason I think I was hoping that the RSA
> algorithm wasn't really used to encrypt all the data. I
> thought it was probably used to encrypt a per-file
> randomly-generated symmetric key which was then used to
> encrypt the file (and was encrypted along with the
> file) because it could be faster. But I think I'm
> confusing it with network protocols like TLS.
>
> Is that what happens with RSA in gpg? [Probably not]
Actually yes, that’s exactly what happens. The data (in your
case, the contents of your file) is symmetrically encrypted using
a randomly generated “session key”, and *that* key is
asymmetrically encrypted using the RSA public key.
Cheers,
- Damien
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20190102/c7eb14e3/attachment-0001.sig>
More information about the Gnupg-users
mailing list