Penetration Testing mailing list archives
Opening PKI encrypted with Public Key outside your Escrow Authority.
From: "Benson, Sean M" <BensonS () state gov>
Date: Mon, 6 Mar 2006 11:58:41 -0600
I have a Question maybe someone can explain to me. Say company Acme has a PKI structure. Company/User Beta also has PKI or is using PKI software It allows S/MIME and Proprietary Keys to be imported into and AcmeUser's keyrings/address books. If User () Acme com uses the key from AnotherUser () Acme com I as the Key Escrow CA can open/un-encrypt/read the mail using the Escrowed Private keys. But If User () Acme com uses the Public Key from User () Beta com to encrypt. Can I open this message using only the Keys I have Escrowed? Ie.. Only AcmeUser's Public/private pair? Or is it encrypted with the Public key of UserBeta and I am SOL? It's a discussion and I think I'm right but I'm having a hard time trackling down facts online about this. Which makes me think either it's so easy to open it that's it's just a given. or It's impossible and so blatant that it's a given. or I'm an ass who skipped some whitepapers I should have read. btw: I believe your SOL without that other key as it's encrypted with it. Am I right? Sbenson DRM: "In other words, embarrass and shackle the progress of improvements of tomorrow by recording and registering as law the prejudices and errors of today". - Isambard Kingdom Brunel ------------------------------------------------------------------------------ This List Sponsored by: Lancope "Discover the Security Benefits of Cisco NetFlow" Learn how Cisco NetFlow enables cost-effective security across distributed enterprise networks. StealthWatch, the veteran Network Behavior Analysis (NBA) and Response solution, leverages Cisco NetFlow to provide scalable, internal network security. Download FREE Whitepaper "Role of Network Behavior Analysis (NBA) and Response Systems in the Enterprise." http://www.lancope.com/resource/ ------------------------------------------------------------------------------
Current thread:
- Opening PKI encrypted with Public Key outside your Escrow Authority. Benson, Sean M (Mar 06)
- Re: Opening PKI encrypted with Public Key outside your Escrow Authority. Enno Rey (Mar 07)
- RE: Opening PKI encrypted with Public Key outside your Escrow Authority. Adrian Floarea (Mar 07)
- Re: Opening PKI encrypted with Public Key outside your Escrow Authority. derez (Mar 07)
- <Possible follow-ups>
- RE: Opening PKI encrypted with Public Key outside your Escrow Authority. Benson, Sean M (Mar 07)