Results 1 to 7 of 7

Thread: Encryption

  1. #1
    Join Date
    Jul 2011
    Beans
    14

    Encryption

    Does an RSA private key mean RSA could decrypt my data if they got hold of it?

    Can people that make encryption decrypt your data?

  2. #2
    Join Date
    Apr 2006
    Location
    Scotland
    Beans
    1,225
    Distro
    Ubuntu 8.04 Hardy Heron

    Re: Encryption

    no. not unless they had your private key.

  3. #3
    Join Date
    Jun 2011
    Location
    The Shadow Gallery
    Beans
    6,782

    Re: Encryption

    Quote Originally Posted by TimeDistort12 View Post
    Does an RSA private key mean RSA could decrypt my data if they got hold of it?

    Can people that make encryption decrypt your data?
    private means exactly that, it is private.

    your keys are as secure as the encryption algorithm and strength used.
    Feel Free to Bitcoin Tip: 135Rp4pwwYTHEJ4u8bxKaDQiC91N9LUoV2

    Backtrack - Giving machine guns to monkeys since 2006
    Kali-Linux - Adding a grenade launcher to the machine guns since 2013

  4. #4
    Join Date
    Jul 2011
    Beans
    14

    Re: Encryption

    I am looking at the process of getting an SSL cert for my website, but in the process, its asking me to paste the private key. That would mean the CA would be have the ability to decrypt the data as well, right?
    Last edited by TimeDistort12; July 16th, 2011 at 02:54 PM.

  5. #5
    Join Date
    Feb 2006
    Beans
    457

    Re: Encryption

    Can yon please let us know the name of the site asking for key details then we may have enough information to form an opinion as to why such a request is being made of you.

  6. #6
    Join Date
    Jul 2011
    Beans
    14

    Re: Encryption

    All of them. When submitting some CSR thing, they ask you for your key or something. I'm guessing this would mean they would be able to decrypt your encrypted data if you gave it to them.. So, your server, client... and CA have the ability to read the encrypted data?

  7. #7
    Join Date
    Oct 2005
    Location
    Al Ain
    Beans
    8,984

    Re: Encryption

    No, the key they ask for is probably in case you put an additional password on the CSR - if you don't want to send the CSR to them in plain text. Usually that is not done.

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •