- Security service for email and file storage applications/databases
- largely made by phil zimmerman
PGP Basics:
- runs on a vairety of platforms.
- uses RSA and Symmetric key algorithms.
- Each time an email message is sent, a new secret key is randomly generated at the sender site.
[Cleartext email] --- hash and encrypt W sender priviate RSA key --> [Signature]
[Signed email]
[Signed email encrypted with secret one-time key]
[Secret one-time key is sent encrypted with recipient's public RSA key]
Bob's side:
Email ---- (concat) signature + email------------------ encrypt w OTP. OTP gets encrypted with alices pub key. Concat togoether and
| send to alice.
| |
Hash |
| |
MD -- Encrypt ----- Signature
Bob pvt key
Alice's side:
(EK)(ESM) → Decrypt key w Pvt key. → get OTP
→ decrypt ESM and get Email and Signature
→ Hash email to get MD2
→ Decrypt Sig with Bob's public key
→ get a copy of MD1.
→ Check if MD1 and MD2 match
Index