Security Basics mailing list archives

RE: integrity and mail encryption

From: "Adrian Floarea" <adrian.floarea () uti ro>
Date: Mon, 7 Nov 2005 14:43:28 +0200

Yes, you need a certification authority for that.  But, this is a problem of
trust.

As far as I know a public key infrastructure (technical terms) implies and a
certification authority. 

More details about this you can find on this link
http://csrc.nist.gov/pki/PKIResearch.html

I hope to help you.

Regards,

Adi Floarea

-----Original Message-----
From: Pranav Lal [mailto:pranav.lal () gmail com] 
Sent: Saturday, November 05, 2005 6:03 PM
To: security-basics () securityfocus com
Subject: RE: integrity and mail encryption

Hi Adrian,

How do you establish ownership of a private key? As others have said you
need a certifying authority to establish this so a public key
infra-structure by itself does not provide non-repudiation.

Pranav
on Friday 11/4/2005 02:40 PM, Adrian Floarea said:

In fact the public key digital signature provide non-repudiation which means
that only the person which has the corresponding private key can make a
digital signature. Shortly, the process is: you have a private key and a
public key. The private key is secret. When you make a digital signature,
first you make a hash of electronic data and after that, you encrypt this
hash with your private key. When someone wants to verify your signature,
make again the hash on the data, decrypt the original hash using your public
key and after that, compare them. Because, you are the only person which has
the private key, you can't deny that you are the person who make the
original digital signature.

Actually the process is much complicated, but the essence is that what I
explain bottom.

Regards,

Security Product Team Leader
Adrian Floarea, CISA
Information Security Department
Bucharest, Romania
Email: adrian.floarea () uti ro







-----Original Message-----
From: Pranav Lal [mailto:pranav.lal () gmail com]
Sent: Wednesday, November 02, 2005 11:21 PM
To: security-basics () securityfocus com
Subject: RE: integrity and mail encryption

Hi Bob,

How does public key encryption provide                  non-repudiation


Pranav

Current thread:

Re: integrity and mail encryption, (continued)
- Re: integrity and mail encryption Austin Murkland (Nov 01)
- RE: integrity and mail encryption b . hines (Nov 01)
  - RE: integrity and mail encryption Adrian Floarea (Nov 01)
  - Message not available
    - RE: integrity and mail encryption Pranav Lal (Nov 03)
    - RE: integrity and mail encryption David Gillett (Nov 04)
    - RE: integrity and mail encryption Robert Hines (Nov 04)
    - RE: integrity and mail encryption Andrew Chong (Nov 04)
    - RE: integrity and mail encryption Robert Hines (Nov 07)
    - RE: integrity and mail encryption Adrian Floarea (Nov 04)
    - RE: integrity and mail encryption Pranav Lal (Nov 07)
    - RE: integrity and mail encryption Adrian Floarea (Nov 07)
    - RE: integrity and mail encryption David Gillett (Nov 07)
    - Re: integrity and mail encryption Saqib Ali (Nov 04)
- RE: integrity and mail encryption Ig Vermaak (Nov 08)