Hi folks, I have a problem about key security.
If a RSA private key is encrypted by an AES key, which is again encrypted by the same RSA private key itself, is this considered as a secure procedure? Obtaining the encrypted RSA private key and the AES key, is there any way to "calculate" or "recover" the private key by some methods like solving an equation? The reason for this strange design is that, the plain text RSA private key is stored in some hardware chip which can only do en/decryption but cannot pass the key out. However, I need to save a copy of the private key in a unsafe place for other purpose, but need to make sure its safety. Also it is not desired to maintain two sets of keys, so here comes the idea to encrypt a key with itself. Hope I have explained it clearly. Any opinion or better suggestion is appreciated. Peter Lin
