If I understand you correctly, yes you must use the private key to decrypt
the symmetric key which has been encrypted using RSA and the client's
public key. There is no way (theoretically) to decrypt using only the
public key.
On Tue, Dec 29, 2015 at 7:58 AM, suguacl28 wrote:
> Ya i know it. Ac
What you are describing is not even how RSA works. You would be describing
symmetrical encryption, whereas RSA is asymmetrical. There is no inherent
vulnerability with symmetrical encryption assuming you keep the key
private. The idea behind RSA is that you can share your public key and
only the
