Bu sayfanın seçili sürümü ile mevcut sürümü arasındaki farkları gösterir.
en:esya:cmszarf:cms-zarf [2013/09/11 08:40] Dindar Öz |
en:esya:cmszarf:cms-zarf [2013/09/11 08:41] (mevcut) Dindar Öz |
||
---|---|---|---|
Satır 5: | Satır 5: | ||
* Decryption of a CMS Envelope structure. | * Decryption of a CMS Envelope structure. | ||
- | In CMS Envelope, both asymmetric and symmetric encryption are used. The plain data is encrypted with a symmetric key. For each recipient, the symmetric encryption key is asymmetrically encrypted and these encrypted key are appended to the document. Upon decryption, The recipient first decrypts the encrypted symmetric key by using his own asymmetric private key and then s/he can decrypt the encrypted data and get the plain content. These operations can be performed by using ESYA CMS Envelope API. | + | In CMS Envelope, both asymmetric and symmetric encryption are used. The plain data is encrypted with a symmetric key. For each recipient, the symmetric encryption key is asymmetrically encrypted and these encrypted keys are appended to the document. Upon decryption, The recipient first decrypts the encrypted symmetric key by using his own asymmetric private key and then s/he can decrypt the encrypted data and get the plain content. These operations can be performed by using ESYA CMS Envelope API. |
Before creating an enveloped data for a plain document, the validity of the recipients' certificates must be checked. This is because some of the recipients may have their private keys stolen and revoked their certificates. | Before creating an enveloped data for a plain document, the validity of the recipients' certificates must be checked. This is because some of the recipients may have their private keys stolen and revoked their certificates. |