[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: key usage - key encipherment or data encipherment

To: ietf-pkix@xxxxxxxx
Subject: Re: key usage - key encipherment or data encipherment
From: Sam Roberts <sroberts@xxxxxxxxxxxx>
Date: Fri, 20 May 2005 10:19:51 -0400
In-reply-to: <s28d96be.016@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <s28d96be.016@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: owner-ietf-pkix@xxxxxxxxxxxx
User-agent: Mutt/1.5.0i

Wrote Simon McMahon <Simon_McMahon@xxxxxxxxxxxxxxxxx>, on Fri, May 20, 2005 at 07:50:03AM +1000:
> The example should match typical usage and doesn't have to cover every
> possibility.

It probably isn't "typical", but the TCG uses RSA private keys encrypted
with RSA public keys of the same strength.

IIRC, instead of encrypting d,p-1,q-1,... (which would be too large),
they only encrypt p. The decryptor can recreate the rest of the private
key from the public key and knowledge of p.

Cheers,
Sam


> 
> Simon.
> 
> 
> Simon McMahon
> 
> Work: (07) 31311420
> Mobile: (043) 2294180
> 
> 
> >>> <diegofv@xxxxxxxxxxx> 05/18/05 12:15am >>>
> But, if the asymmetric private key is based on elliptic curves?
> 
> Diego
> 
> ----- Mensaje Original -----
> Remitente: "Simon McMahon" Simon_McMahon@xxxxxxxxxxxxxxxxx 
> Destinatario: housley@xxxxxxxxxxxx, ietf-pkix@xxxxxxxx 
> Fecha: Martes, Mayo 17, 2005  1:03am
> Asunto: Re: key usage - key encipherment or data encipherment
> 
> >
> >The example for 'keyEncipherment' should not include an "RSA public 
> >key encrypting an asymmetric private key", which, if it is also RSA 
> >is too big to encrypt with the public key. Surely, an RFC shouldn't 
> >list impossible cases as examples.
> >
> >Simon.
> >
> 
> 
> 
> 
> 
> ***********************************************************************************
> This email, including any attachments sent with it, is confidential and for the sole use of the intended recipient(s).  This confidentiality is not waived or lost, if you receive it and you are not the intended recipient(s), or if it is transmitted/received in error.
> 
> Any unauthorised use, alteration, disclosure, distribution or review of this email is prohibited.  It may be subject to a statutory duty of confidentiality if it relates to health service matters.
> 
> If you are not the intended recipient(s), or if you have received this email in error, you are asked to immediately notify the sender by telephone or by return email.  You should also delete this email and destroy any hard copies produced.
> ***********************************************************************************
> 

-- 
http://www.certicom.com

References:
- RE: Re: key usage - key encipherment or data encipherment
  - From: Simon McMahon

Prev by Date: Re: Request for new work item - Defining an SRV RR otherName
Next by Date: RE: Request for new work item - Defining an SRV RR otherName
Previous by thread: RE: Re: key usage - key encipherment or data encipherment
Next by thread: Re: key usage - key encipherment or data encipherment
Index(es):
- Date
- Thread