Solved

Using .NET for PGP encrypted query string

Posted on 2004-09-01
3
455 Views
Last Modified: 2010-04-11
I need to pass two params to a URL (black box). I am being told that as long as I concatenate the string of params (similar to "param1=A#param2=B"), I can then encrypt the string using PGP and pass that encrypted string as a single param to where it needs to go. I have been provided the target's public key.

According to documentation I have found, PGP needs to have a file to read from. Is there a way I can make this happen without writing to a file? I absolutely must use PGP and their public key to perform this encrypted query string method. I am using .NET on WinTel platform, VB or C# independent.
0
Comment
Question by:PDubs
3 Comments
 
LVL 5

Accepted Solution

by:
rsriprac earned 250 total points
Comment Utility
If you are collaing GnuPGP, then you have to write to file or pipe it in via stdin.  This is because GnuPGP is a separate program.  This article might clear up some details:

http://www.codeproject.com/csharp/gnupgdotnet.asp

I would recommend using the wrapper class they provide

-Ram
0
 
LVL 51

Expert Comment

by:ahoffmann
Comment Utility
silly question:
  why do you encrypt params when everyone on world can easyly decrypt it with the public key?
  sounds like a useless use of encryption ...

PGP/GPG can either read the data or the public key from STDIN, some versions of PGP can also read from a previously opend file  handle (AFAIK up to PGP 6.5.3), both, GPG and PGP also support a --batch option for that purpose.
0
 

Author Comment

by:PDubs
Comment Utility
Ram -- Good suggestion. It works like a charm.

Hoffmann -- I am limited to the requirements given to me, that's why.
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

This story has been written with permission from the scammed victim, a valued client of mine – identity protected by request.
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now