Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Passphrase protection of private key
Top Forums Programming Passphrase protection of private key Post 302263614 by vino on Tuesday 2nd of December 2008 04:52:45 AM
Old 12-02-2008
Quote:
Originally Posted by Treasa
Hi all,

I have written a Java program to generate RSA public and private keys. I am writing the keys to a file and reading from it when required to encryption or decryption. I want to protect the private key file using a passphrase. Can anyone tell me how to do it? Smilie

Thanks.
I am not aware of Java API's which let you protect files with a password.

Why dont you use the Serializable interface of Java and serialize the private key ? See this tech tip from Sun.
 

10 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

ssh - at login Passphrase for key required

Hello, I want to use a shell-script to transfer data over sftp. I donīt find a way to login in automatically. I tried to send the password in a script like possible with ftp sftp user@server << cmd password cd /distant/directory lcd /local/directoryget ssh_install get ( or put) your... (2 Replies)
Discussion started by: olso
2 Replies

2. Shell Programming and Scripting

Rename .pub and private key

I wish to generate a id_dsa.pub and id_dsa (Public and Private Key) in a common user group. I have checked the .ssh directory and i have already found id_dsa.pub and id_dsa existing. Is that OK if i create both the keys in my home direcotry, rename it to jjj.pub and jjj and move to Common user... (1 Reply)
Discussion started by: vasuarjula
1 Replies

3. Solaris

Multiple private key to be uploaded

I would like to ask if you have a procedure on how to upload multiple private key for multiple users in solaris? I was only able to add one but when I tried to add several key, it fails. example: a. user1: user1.ppk b. user2: user2.ppk Each with different password on the server. Pls advise (6 Replies)
Discussion started by: lhareigh890
6 Replies

4. UNIX for Dummies Questions & Answers

Extracting a Private key from a keystore?

Hi everyone! I know you can extract public keys from a keystore using the keytool command. But what is the process to extract a private key from a jks keystore and import into another jks keystore using keytool? Any guidance would be greatly appreciated! I can't seem to find anything, I do... (0 Replies)
Discussion started by: Keepcase
0 Replies

5. UNIX for Dummies Questions & Answers

Secure private key

Hello all, We have unix environment and we would like to use ssh public and private key to move between server using ssh. I do know how to test this and have it up and running on some sandbox...but my question is how would one secure the PRIVATE KEY....we are not using a passphrase...and i know... (1 Reply)
Discussion started by: abdul.irfan2
1 Replies

6. Shell Programming and Scripting

Private Key

I have two types of files pubring.pkr secring.skr secring.skr is encrypted and not able to read. How can i read secring.skr in text format after decrypting ? is there any way of decrypting this file? Unix HP - UX Version. (4 Replies)
Discussion started by: airesh
4 Replies

7. UNIX for Dummies Questions & Answers

Public and Private Key generation for scp

Hi, What tool is used to generate public and private keys for SCP? Do you have an example script that generates these keys, puts them in files and then another example script that references them from SCP? Thanks, (9 Replies)
Discussion started by: Astrocloud
9 Replies

8. OS X (Apple)

Using a private key with SSH in terminal

Before you get the wrong idea, I am not looking for how to generate one. I have a key from a server admin but I can't figure out how to use it in OS X. I have the key, the address and everything I should need but there doesn't seem to be a step by step on how to install the key and use it in... (4 Replies)
Discussion started by: kylebellamy
4 Replies

9. Shell Programming and Scripting

Rsa public private key matching

Hi All, I have a requirement where i need to check if an rsa public key corresponds to a private key and hence return success or failure. Currently i am using the command diff <( ssh-keygen -y -e -f "$PRIVKEY" ) <( ssh-keygen -y -e -f "$PUBLICKEY" ) and its solving my purpose. This is in... (1 Reply)
Discussion started by: mritusmoi
1 Replies

10. UNIX for Advanced & Expert Users

Private and public key encryption

Hi, we have private and public key, encrypt file using public and want to decrypt using private key. can you please advise below commands are correct or other remedy if unix have? encrypt -a arcfour -k publickey.asc -i TESTFILE.csv -o TESTFILE00.csv decrypt -a arcfour -k privatekey.asc... (2 Replies)
Discussion started by: rizwan.shaukat
2 Replies

LEARN ABOUT NETBSD

ssl_ctx_set_default_passwd_cb

SSL_CTX_set_default_passwd_cb(3)				      OpenSSL					  SSL_CTX_set_default_passwd_cb(3)

NAME

       SSL_CTX_set_default_passwd_cb, SSL_CTX_set_default_passwd_cb_userdata - set passwd callback for encrypted PEM file handling

LIBRARY

       libcrypto, -lcrypto

SYNOPSIS

	#include <openssl/ssl.h>

	void SSL_CTX_set_default_passwd_cb(SSL_CTX *ctx, pem_password_cb *cb);
	void SSL_CTX_set_default_passwd_cb_userdata(SSL_CTX *ctx, void *u);

	int pem_passwd_cb(char *buf, int size, int rwflag, void *userdata);

DESCRIPTION

       SSL_CTX_set_default_passwd_cb() sets the default password callback called when loading/storing a PEM certificate with encryption.

       SSL_CTX_set_default_passwd_cb_userdata() sets a pointer to userdata which will be provided to the password callback on invocation.

       The pem_passwd_cb(), which must be provided by the application, hands back the password to be used during decryption. On invocation a
       pointer to userdata is provided. The pem_passwd_cb must write the password into the provided buffer buf which is of size size. The actual
       length of the password must be returned to the calling function. rwflag indicates whether the callback is used for reading/decryption
       (rwflag=0) or writing/encryption (rwflag=1).

NOTES

       When loading or storing private keys, a password might be supplied to protect the private key. The way this password can be supplied may
       depend on the application. If only one private key is handled, it can be practical to have pem_passwd_cb() handle the password dialog
       interactively. If several keys have to be handled, it can be practical to ask for the password once, then keep it in memory and use it
       several times. In the last case, the password could be stored into the userdata storage and the pem_passwd_cb() only returns the password
       already stored.

       When asking for the password interactively, pem_passwd_cb() can use rwflag to check, whether an item shall be encrypted (rwflag=1).  In
       this case the password dialog may ask for the same password twice for comparison in order to catch typos, that would make decryption
       impossible.

       Other items in PEM formatting (certificates) can also be encrypted, it is however not usual, as certificate information is considered
       public.

RETURN VALUES

       SSL_CTX_set_default_passwd_cb() and SSL_CTX_set_default_passwd_cb_userdata() do not provide diagnostic information.

EXAMPLES

       The following example returns the password provided as userdata to the calling function. The password is considered to be a '' terminated
       string. If the password does not fit into the buffer, the password is truncated.

	int pem_passwd_cb(char *buf, int size, int rwflag, void *password)
	{
	 strncpy(buf, (char *)(password), size);
	 buf[size - 1] = '';
	 return(strlen(buf));
	}

SEE ALSO

       ssl(3), SSL_CTX_use_certificate(3)

1.0.1i								    2009-07-20					  SSL_CTX_set_default_passwd_cb(3)
All times are GMT -4. The time now is 03:50 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy