Hi Peter:
On October 26, 2009 10:37:54 pm Peter Lin wrote:
> Thanks all guys for your opinion.
>
> There is a HSM used which vendor provides hardware RSA encryption and
> decryption. However, the key of to the hardware is one way-- I can only
> pass in the key to the hardware, but cant pass out. D
Thanks all guys for your opinion.
There is a HSM used which vendor provides hardware RSA encryption and
decryption. However, the key of to the hardware is one way-- I can only pass
in the key to the hardware, but cant pass out. Due to the low performance of
the hardware decryption, I decide to use
Peter Lin wrote:
> Hi folks,
>
> I have a problem about key security.
>
> If a RSA private key is encrypted by an AES key, which is again encrypted by
> the same RSA private key itself, is this considered as a secure procedure?
> Obtaining the encrypted RSA private key and the AES key, is there a
Peter Lin wrote:
> The reason for this strange design is that, the plain text RSA
> private key is stored in some hardware chip which can only do
> en/decryption but cannot pass the key out. However, I need to
> save a copy of the private key in a unsafe place for other
> purpose, but need to mak
: owner-openssl-us...@openssl.org
[mailto:owner-openssl-us...@openssl.org] On Behalf Of Peter Lin
Sent: Monday, October 26, 2009 1:21 PM
To: openssl-users@openssl.org
Subject: Key security problem
Hi folks,
I have a problem about key security.
If a RSA private key is encrypted by an AES key
Hi folks,
I have a problem about key security.
If a RSA private key is encrypted by an AES key, which is again encrypted by
the same RSA private key itself, is this considered as a secure procedure?
Obtaining the encrypted RSA private key and the AES key, is there any way to
"calculate" or "recov
