Solved

Asymetric public / private key

Posted on 2014-04-02
5
302 Views
Last Modified: 2016-03-23
I have been doing some reading and I need to get this right

In the public / private key system

1> The public key ALWAYS encrypts the data

2> The private key ALWAYS decrypts the data

publick keys can not decrypt and private keys can not encrypt

Is this correct ?

njd
0
Comment
Question by:Anthony Lucia
  • 2
  • 2
5 Comments
 
LVL 5

Expert Comment

by:mebaby333
Comment Utility
Yes
0
 
LVL 4

Accepted Solution

by:
Pancake_Effect earned 500 total points
Comment Utility
I believe it can go both ways, but are used differently.

For example John Doe has some important stock information he want's to send to his clients. He would use his private key to encrypt the data. He would send his public key to his clients that they would use to decrypt the data. ONLY the correlating public key would be able to decrypt the data. This is because the private key and public key are mathematically related...someone can't just make up the public key that works with John Doe's private key.

If the client's wanted to respond to John Doe after receiving the stock information, they could use their public key to encrypt the message and John Doe would use his Private key to decrypt it. But a public key is public, so how do they know who it really came from? They could use certificates or digital signing. The only other problem sending via public key to the private key is ONLY John Doe can read it, because only he has his own private key.

So to sum it up, I believe both keys and encrypt and decrypt, but the intended parties, or the amount of people available in each party differs.

I'm majoring is cyber security, and this is my perspective of it based off my previous courses. Please correct me anyone if I'm wrong.
0
 
LVL 5

Expert Comment

by:mebaby333
Comment Utility
If you were to email it back wouldn't you need to use John Does public key at that point?
0
 
LVL 4

Expert Comment

by:Pancake_Effect
Comment Utility
Yep, sorry I  vaguely stated "their public key" I meant to state "their public key from John Doe." Should of edited that.
0
 
LVL 33

Expert Comment

by:Dave Howe
Comment Utility
Short answer is - it depends.

In many asymmetric crypto methods, the keypairs form a single operation - such that performing method m on a text t with a one of the two keys, then again with the other, gives the original plaintext.

That being true, the public key HALF of the keypair is the one you give out, the private key half is the half you keep secret - often the public key half includes some arbitrary constant or canned value for simplicity, but they could as easily be random.

In RSA, the public key is the pair of an exponent and a calculated modulus. For ease of use, the exponent is often a power of 2 (because in binary, raising to a power of 2 is just a left-shift operation) and the decryption key calculated using this as its "partner".

now, add to that the fact that most cryptographic signatures are the reverse operation (you encrypt with the secret key, so that anyone can decrypt with the public key) and you have the idea.

In cases where the above relationship is not true, then you need to have separate encryption and signing keys -  in those cases, the encryption key is kept secret, and the decryption key published.
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Phishing is at the top of most security top 10 efforts you should be pursuing in 2016 and beyond. If you don't have phishing incorporated into your Security Awareness Program yet, now is the time. Phishers, and the scams they use, are only going to …
SSL stands for “Secure Sockets Layer” and an SSL certificate is a critical component to keeping your website safe, secured, and compliant. Any ecommerce website must have an SSL certificate to ensure the safe handling of sensitive information like…
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now