cancel
Showing results for 
Search instead for 
Did you mean: 

PGP Encryption/Decryption module + Key generation (Linux server)

Former Member
0 Kudos

Hi Experts,

I have requirement for PGP Key pair generation for PI Linux server using GPG version OS level commands.

But with this generation of PGP key pair, would it be possible to use PGP Encryption/Decryption module??

Since I have only RSA algorithm to select while key generation...

Else please share how to generate PGP keys (Linux Server) that supports PGP module Encryption/Signature supported Algorithms.

Also please confirm how to send Public Certificate Finger Print to End users??

Best Regards,

Suresh S

Accepted Solutions (1)

Accepted Solutions (1)

vicky20691
Active Contributor
0 Kudos

Hi Suresh,

You are getting confused here let me answer you in points -

1. PGP keys are not OS specific.

2. You can generate PGP keys in Windows and then place/copy at some folder in your linux file system.

3. There is a parameter keyRootPath where you can specify the path where you placed keys in your linux system.

4. When you share your public PGP key with the partner they automatically get the fingerprint (do not confuse SFTP/SSH with PGP they are entirely different things)

5. There are 2 types of encryption in PGP world Symmetric and Asymmetric. As convenient option is asymmetric and most tools support that you are able to generate it with RSA protocols.  Asymmetric encryption happens with RSA PGP keys.  And yes it will support most othe encryption algorithms too like AES, DES etc.

6. In case your question is about SSH keys for SFTP and not about PGP then you can ask that question too.

7. Yes, even if you generate keys on windows and copy it on linux it wil work on the module.

Regards,

Vikas

Former Member
0 Kudos

Hi Vikas,

Many thank for the clear notes.

I need to generate PGP keys in .asc key format. (Does it support Asymmetric/Symmetric) keys with 3DES for Encryption and MD5 for signing.

Hope i can generate it from gnupg. Please clarify.

Thank you.,

Best Regards,

Suresh S.

Former Member
0 Kudos

Hi Manoj,

Few clarifications please.

Below are supported algorithms. I am interested in generating pub/private keys that does support 3DES - encryption algorithm,., MD5 signing algorithm in .asc format keys.,

Publ key refers here say RSA/ELG and DSA ., which one do i need to choose here?

I am just stuck here. Please help

Pubkey: RSA, ELG, DSA

Cipher: 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH

Hash: MD5, SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224

Compression: Uncompressed, ZIP, ZLIB, BZIP2

Best Regards,

Suresh S

manoj_khavatkopp
Active Contributor
0 Kudos

Suresh.

Use the above link which i shared earlier to generate the private/public key pair.

Copy paste the private and public key in required format in your case .asc file and then place this files in you PI system.

The Ciper/Hash/Compression are the parameters to be passed while you are encrypting the data .For more details on parameters check below link..

Br,

Manoj.

Former Member
0 Kudos

Hi Manoj,


Thanks for your quick response.


This is where i stuck really.


Please select what kind of key you want:
   (1) DSA and Elgamal (default)
   (2) DSA (sign only)
   (5) RSA (sign only) -- SELECT THIS OPTION
Your selection? 5

RSA keys supports respective encyrption/signing algorithm mentioned earlier?

Best Regards,

Suresh S

manoj_khavatkopp
Active Contributor
0 Kudos

Yes , it supports Encrytpion & Signing as well.

vicky20691
Active Contributor
0 Kudos

Hi Suresh,

Apologies for the delayed response. Just to confirm Manoj has given you the correct answers . generate the RSA (preferred 2048) keys and it will solve all your requirement with any extension u want .asc, .abc anything.

Answers (2)

Answers (2)

manoj_khavatkopp
Active Contributor
0 Kudos

Suresh,

You may refer the below link to generate pgp keys using gpg:

Generating ASCII Armored PGP Key Pairs - Process Integration - SCN Wiki


Also please confirm how to send Public Certificate Finger Print to End users??

If you are using Encrypting u need the public key from client.

If you are using decrypting u need to share the public key which u generated using above link.

Br,

Manoj

Former Member
0 Kudos

Hi Manoj/Apu,

Thanks for the inputs.

I have referred the mentioned blogs.Blog shows for PGP key generation in Windows server.

I have PI runs on linux server.

And generating Armored key how to maintain Encryption and Signature Algorithm while generating the keys?

Please confirm. Needed urgently

Best Regards,

Suresh S

manoj_khavatkopp
Active Contributor
0 Kudos

Suresh,

There are numerous online tools which helps to generate pgp keys with required algo:

https://pgpkeygen.com/

If you want to generate specifically using gpg then check below blog:

How to generate PGP keys using GPG 1.4.5 on Linux (Web Services and Security in the Fusion Cloud)

Br,

Manoj

apu_das2
Active Contributor
0 Kudos