Home of Janitha Karunaratne » Blog Archive » Public Key Encryption in a nutshell

Public Key Encryption in a nutshell

I have been noticed lot of people lately who are using storing or transferring sensitive data (such as bank information) with no encryption or security what so ever. Anyone with a simple packet sniffer can catch the data when being transferred or if they have any sort of access to your physical machine they can read it. No wonder why so many people are getting their identity stolen. This is a very simple guide on how to use Public Key Encryption (when sending to other people or simply keeping it encrypted at home). This guide is mainly for the person who has no idea what public key encryption is, but if you want to read it regardless go right ahead.

Think of encryption as a safe box that has a key to lock it and unlock it. In traditional encryption methods, there used to be only one key. The encryption software takes in your data file and your key, and outputs a encrypted file. Once encrypted, no one can read this by simply opening it in a text editor since the data is encrypted or scrambled. This is like putting the data in a safe box and locking it, no one has access except for you. Now to get the data file back, you put the key and the encrypted file into the encryption software you are using and it outputs the data (just like opening a safe box with the key).

Data — [key] —> EncryptedData —[key] —> Data

The only problem with this method is anyone with the key can decrypt it and read it. Unpractical to use online since the key has to be transferred to the other end of the communication as well, and if someone steals the key while being transferred, all the data that’s being encrypted will also be compromised. Public Key Encryption solves this problem by using two keys instead of one.

When you first start using a public key encryption system, the software program you choose to use will generate a key pair for you. The two files that are created are called the public key and the private key. You give the public key to everyone else and the public, and keep the private key securely with you. Public key encryption works similar to a safe box as well, except it has two keys. One key can only lock it, and the other key can only open it. Each key pair is related to each other, as the public key is derived from the private key (but the private key cannot be derived from the public key). The Math Behind it

PrivateKey —Oneway—> PublicKey

Data —[PublicKey]—> EncryptedData —[PrivateKey]—> Data

So you give the public key to everyone, and they can encrypt the data using the public key and send it to you. Once they encrypt using your public key, no one can decrypt it except for the one who has the private key which corresponds to the public key that was used.

Most encryption software also takes use of a passphrase, which is used to encrypt and decrypt the private key stored in your computer. Most all encrytion software suites will prompt you for your passphrase before decrypting anything. This way, only you who know the passphrase can decrypt the data and if your physical computer gets compromised the private key will not be able to be used without the passphrase.

Don’t ever write your passphrase down, and don’t keep multiple copies of your private key laying around. It’s a good idea to keep a back up of your private key somewhere extremely safe (bury it somewhere remote? Bank safe) since if you lose your private key you will not be able to generate it again and all your encrypted data will be unreadable by anyone. If you start relying on Public Key Encryption heavily, it’s a good idea to keep one copy with you, one in a safe place, and another copy broken down and spread out across several trusted persons (example: ten out of the thirteen pieces given out should be present to create the full private key again, this good if you think that you might die of something and the other people can collectively recreate the key and recover your data, you never know, Google for tools like this there are several open source ones out there).

PGP (Pretty Good Privacy) is the standard encryption method considered secure these days. You can obtain software from either pgp.com or if you like to use a more open source approach GnuPG which is what I use. For GnuPG there are several front ends, specifically kgpg and seahorse and evolution email client has built in support for GnuPG. Most other email clients (Outlook, Thunderbird) have plug-ins which enables you to encrypt and decrypt data on the fly.

I will also touch very lightly on digital signatures using Public Key Encryption. Digital signatures can verify that the message sent was not modified in transit and the message did come from the person who they claim to be. How it works is quite simple. The sender takes the data which is about to be sent, hashes it (give the data a unique fingerprint, a much smaller size than the actual data), then encrypt the hash using one of the parts of the private key and attach that to the bottom of the data. (Example signature at the bottom of this post).

Data —[Hasher]—> DataHash —[PrivateKey]—> Signature

Now that we have a signature to go along with the data, both of those are sent together. The receiver (who has your public key) will do the following.

Data —[Hasher]—> DataHash
Signature —[Public Key]—> DataHash

The receiver compares the two values, if they match that means the message is authentic and was sent by the person who public key belongs to.

That pretty much covers the basic of Public Key Encryption. If you are sending important messages back and forth, at least take your time to digitally sign the emails (although the receiver might not care or have no time to check it). This way in the future if some sort of legal issue comes up, and the receiver of email you sent earlier changed the content of the email and are using it as evidence, you can counter their argument by showing that the signature does not match. Its proof that you sent the mail. There are many other advantages to Public Key Encryption which you can use your favorite search engine to search for. Better be safe than sorry.

—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQBDMJQTCGo7xHppuyQRAnqfAJ4puIciLuvS5abkkY/8ksJNTfez2QCaAx66
UR7SqUyYlY4K7eZLy7XT3rU=
=nO2W
—–END PGP SIGNATURE—–

By: Janitha | 09/20/05 | General | Trackback | Comments [RSS 2.0]

73 Responses to “Public Key Encryption in a nutshell” »»

Hillari

Comment by Hillari | 08/15/06 at 2:41 am

ERR E
Svetlana

Comment by Svetlana | 08/16/06 at 4:33 am

ERR 1
Jooni

Comment by Jooni | 08/17/06 at 4:18 am

ERR E
Prohor

Comment by Prohor | 08/18/06 at 1:06 pm

ERR
Bill

Comment by Bill | 08/19/06 at 4:32 pm

Hello people! Nice site!
%
Bill

Comment by Bill | 08/19/06 at 4:32 pm

Hello+people%21+Nice+site%21%0D%0A%25
Elizabeth

Comment by Elizabeth | 08/21/06 at 11:06 am

Cool!.. Nice work…
Smith

Comment by Smith | 08/22/06 at 7:54 pm

Pretty nice site, wants to see much more on it! :)
MAN

Comment by MAN | 08/23/06 at 12:29 pm

The best site
s
Britney

Comment by Britney | 08/24/06 at 7:52 pm

Oh o ho! very nice site!
n
Jennifer

Comment by Jennifer | 08/25/06 at 1:06 am

A fantastic site, and brilliant effort. A great piece of work.,
Bush

Comment by Bush | 08/25/06 at 3:07 am

Very cool design! Useful information. Go on!y
Nicole

Comment by Nicole | 08/25/06 at 9:17 am

Pretty nice site, wants to see much more on it! :)o
Sarah

Comment by Sarah | 08/25/06 at 3:41 pm

Hi, nice site, good work! Thank you!
Sveta

Comment by Sveta | 08/26/06 at 6:22 am

Hi men!!! Free love?
o
Nike

Comment by Nike | 08/27/06 at 5:24 pm

%3Ca+href%3D%5C%22http%3A%2F%2Fwww.carookee.com%2Fforum%2FProm%2DDress%5C%22%3Eprom+dress%3C%2Fa%3E+%3Ca+href%3D%5C%22http%3A%2F%2Fweblogs.bnn.nl%2Fcingular%2Dringtones%5C%22%3Ecingular+ringtones%3C%2Fa%3E+%5Burl%3Dhttp%3A%2F%2Fwww.carookee.com%2Fforum%2FProm%2DDress%5Dprom+dress%5B%2Furl%5D+%5Burl%3Dhttp%3A%2F%2Fweblogs.bnn.nl%2Fcingular%2Dringtones%5Dcingular+ringtones%5B%2Furl%5D++%3Ca+href%3D%5C%22http%3A%2F%2Fwww.euro%2Dcscl.org%2FMembers%2Fpereved%2Fverizon%2Dringtones.html%5C%22%3Efree+verizon+ringtones%3C%2Fa%3E+%3Ca+href%3D%5C%22http%3A%2F%2Fwww.plone4artists.org%2FMembers%2Fpereved%2Fnextel%2Dringtones.html%5C%22%3Enextel+ringtones%3C%2Fa%3E+%5Burl%3Dhttp%3A%2F%2Fwww.euro%2Dcscl.org%2FMembers%2Fpereved%2Fverizon%2Dringtones.html%5Dfree+verizon+ringtones%5B%2Furl%5D+%5Burl%3Dhttp%3A%2F%2Fwww.plone4artists.org%2FMembers%2Fpereved%2Fnextel%2Dringtones.html%5Dnextel+ringtones%5B%2Furl%5D++%3Ca+href%3D%5C%22http%3A%2F%2Fbeam.to%2Forder%2Dchecks%5C%22%3Eorder+checks%3C%2Fa%3E+%3Ca+href%3D%5C%22http%3A%2F%2Fwww.forumbolt.com%2F%3Fmforum%3Dwirelessprovide%5C%22%3Ephone+service+cellular+wireless+provider%3C%2Fa%3E+%5Burl%3Dhttp%3A%2F%2Fbeam.to%2Forder%2Dchecks%5Dorder+checks%5B%2Furl%5D+%5Burl%3Dhttp%3A%2F%2Fwww.forumbolt.com%2F%3Fmforum%3Dwirelessprovide%5Dphone+service+cellular+wireless+provider%5B%2Furl%5D%0D%0A
Urii

Comment by Urii | 08/28/06 at 2:10 am

Thanks so very much for taking your time to create this very useful and informative site. I have learned a lot from your site. Thanks!!1
Urii

Comment by Urii | 08/28/06 at 2:10 am

Thanks+so+very+much+for+taking+your+time+to+create+this+very+useful+and+informative+site.+I+have+learned+a+lot+from+your+site.+Thanks%21%211
Smit

Comment by Smit | 08/29/06 at 2:31 am

Very cool design! Useful information. Go on!n
Katie

Comment by Katie | 08/29/06 at 7:24 am

Hello people! Nice site!
0
Meteor

Comment by Meteor | 08/29/06 at 11:43 pm

Thank you for your site. I have found here much useful information…d
Meteor

Comment by Meteor | 08/31/06 at 12:57 pm

I\’m love this great website. Many thanks guyd
Sveta

Comment by Sveta | 08/31/06 at 1:07 pm

You have built a good websiteo
Jennifer

Comment by Jennifer | 09/01/06 at 6:33 am

This is very interesting site…i
Prohor

Comment by Prohor | 09/01/06 at 7:14 am

Looking for information and found it at this great site…
Jesus

Comment by Jesus | 09/02/06 at 11:44 am

Thanks so very much for taking your time to create this very useful and informative site. I have learned a lot from your site. Thanks!!
Hillari

Comment by Hillari | 09/02/06 at 9:36 pm

Oh o ho! very nice site!e
Svetlana

Comment by Svetlana | 09/04/06 at 10:51 am

Cool!.. Nice work…
%
Jimpson

Comment by Jimpson | 09/06/06 at 7:09 am

Your guestbook is example of middle-class guestbooks. Congratulation! I�ll show your site and guestbook to my friends.d
Bush

Comment by Bush | 09/07/06 at 12:38 pm

Hello admin, nice site ! Good content, eautiful design, thank !.
Bush

Comment by Bush | 09/07/06 at 1:39 pm

Just serfed in. Great site, guys!h
Bill

Comment by Bill | 09/07/06 at 2:16 pm

Very good web site, great work and thank you for your service.!
Semen

Comment by Semen | 09/07/06 at 5:47 pm

Hey ..love the new site!!! Keep up the good work. I’ll send you text sometime. If you’re home at any time we’ll have to meet up for a pint in the Crown again. Have a good one
Jooni

Comment by Jooni | 09/08/06 at 10:51 am

Found your site in google, and it has a lot of usefull information. Thanx.x
Meteor

Comment by Meteor | 09/09/06 at 10:10 pm

beach%2Dbabes%0D%0Ad
Sveta

Comment by Sveta | 09/10/06 at 9:01 am

Looking for information and found it at this great site…a
Hillari

Comment by Hillari | 09/10/06 at 12:47 pm

I have been looking for sites like this for a long time. Thank you!.
Park

Comment by Park | 09/10/06 at 8:00 pm

You have a wonderful website here. May God rich bless you always.o
Anna

Comment by Anna | 09/13/06 at 6:50 am

Very good site! I like it! Thanks!e
Semen

Comment by Semen | 09/14/06 at 6:18 am

Hey ..love the new site!!! Keep up the good work. I’ll send you text sometime. If you’re home at any time we’ll have to meet up for a pint in the Crown again. Have a good one
Elizabeth

Comment by Elizabeth | 09/14/06 at 11:09 am

Hi, good morning to all of you… Nice Guestbook ;-) !!!.
Den

Comment by Den | 09/14/06 at 9:20 pm
Daddy

Comment by Daddy | 09/15/06 at 10:10 am

online casino %
Semen

Comment by Semen | 09/15/06 at 4:45 pm

Hey ..love the new site!!! Keep up the good work. I’ll send you text sometime. If you’re home at any time we’ll have to meet up for a pint in the Crown again. Have a good one
Vasilii

Comment by Vasilii | 09/18/06 at 12:44 am

This website is Great! I will recommend you to all my friends. I found so much useful things here. Thank you.
Keno

Comment by Keno | 09/18/06 at 4:40 am

Cool guestbook, interesting information… Keep it UP. excellent site i really like your stuff.
Prohor

Comment by Prohor | 09/18/06 at 7:12 am

You have a wonderful website here. May God rich bless you always.
Jersey

Comment by Jersey | 09/18/06 at 9:23 am

Hi, good morning to all of you… Nice Guestbook ;-) !!!!
Elizabeth

Comment by Elizabeth | 09/18/06 at 2:08 pm

Very cool design! Useful information. Go on!s
Prohor

Comment by Prohor | 09/18/06 at 9:05 pm

Hi, all. Nice site…I really like your site ! Good job man.+
Elizabeth

Comment by Elizabeth | 09/18/06 at 10:30 pm

Wonderful+and+informative+web+site.I+used+information+from+that+site+its+great.u
Bush

Comment by Bush | 09/18/06 at 11:16 pm

Cool guestbook, interesting information… Keep it UP. excellent site i really like your stuff.s
Dog

Comment by Dog | 09/19/06 at 4:27 am

ambien-sleep-medication
o
Bush

Comment by Bush | 09/20/06 at 7:07 am

Hello admin, nice site ! Good content, eautiful design, thank !w
Urii

Comment by Urii | 09/20/06 at 8:21 am

Interesting+web+page+is%2C+i%5C%27ll+see+you+later+one+more+timee
Jersey

Comment by Jersey | 09/20/06 at 9:23 am

Hi, all. Nice site…I really like your site ! Good job man.+
Jooni

Comment by Jooni | 09/20/06 at 3:14 pm

air-travel
%
Vasilii

Comment by Vasilii | 09/20/06 at 3:38 pm

Thanks so very much for taking your time to create this very useful and informative site. I have learned a lot from your site. Thanks!!
Pol

Comment by Pol | 09/21/06 at 1:14 am

phentermine B
MAN

Comment by MAN | 09/21/06 at 6:27 am

asian4you
D
Bob

Comment by Bob | 09/21/06 at 6:34 am

Looking for information and found it at this great site…b
4bcb4b97ev

Comment by 4bcb4b97ev | 09/22/06 at 5:20 am

md6h62gcbjxdb3e7y http://www.736671.com/967590.html f860615l5vm
5sfr7fylkf

Comment by 5sfr7fylkf | 09/22/06 at 5:40 am

hdpohjhr5uqqel9 [URL=http://www.700448.com/429035.html] 82va6jzel [/URL] h5vt1udgbtavy5z
Meteor

Comment by Meteor | 09/22/06 at 8:26 am

i love this site.o
Keno

Comment by Keno | 09/22/06 at 3:34 pm

adult-dating-site
2
Alex

Comment by Alex | 09/22/06 at 9:27 pm

valium
Helga

Comment by Helga | 09/23/06 at 11:05 am

Wonderful and informative web site.I used information from that site its great.
Semen

Comment by Semen | 09/27/06 at 10:12 pm

Hey ..love the new site!!! Keep up the good work. I’ll send you text sometime. If you’re home at any time we’ll have to meet up for a pint in the Crown again. Have a good one
Cherchel

Comment by Cherchel | 10/18/06 at 1:06 am

i like you diz phentermine www2.peepingmoe.com/forums/hollycam/index.cgi?read=9155 [URL=www2.peepingmoe.com/forums/hollycam/index.cgi?read=9155]phentermine[/URL]
Nick

Comment by Nick | 10/29/06 at 5:57 pm

free%2Donline%2Dblack%2Djack%0D%0Au
Sveta

Comment by Sveta | 10/31/06 at 10:04 pm

Thanks so very much for taking your time to create this very useful and informative site. I have learned a lot from your site. Thanks!!p
Elza

Comment by Elza | 11/01/06 at 4:19 am

Very interesting website. Keep up the outstanding work and thank you…c
Tac

Comment by Tac | 01/27/08 at 9:36 pm

The link to:
The Math Behind it

doesn’t work

Public Key Encryption in a nutshell

73 Responses to “Public Key Encryption in a nutshell” »»

Leave a Reply »»