Re: Encryption Problem

From: "Hernan de Lahitte" <hernan_delahitte@xxxxxxxxxxx>
Date: Wed, 27 Apr 2005 09:56:25 -0300

As you stated right, you need only the public key to encrypt the message and
the private key associated to that public key to decrypt that message. I
would suggest you to verify if you don't have a private key installed on
your server testing machine. Try with some certificate that you never
installed on that machine and send the encrypted message from another
machine so you may be sure that on the server side you are not using the
private key associated to the public key you are using to encrypt on the
client side.

--
Hernan de Lahitte
http://clariusconsulting.net/hdl

"John Wieland" <John Wieland@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:AAC82CE8-C477-4B1E-B902-3A985CE65798@xxxxxxxxxxxxxxxx
> Hi,
> I'm working on a small client/server application which communicates using
> SOAP messages secured by the new WSE2.0 Encryption and Digital Signature.
>
> I've been finding that when I send a message encrypted with someones
> public
> key that the other end can then decrypt the message with only the public
> key
> certificate present in the certificate store. If the certificate with the
> public key is not present in the certificate store then the message is
> rejected. As soon as I install the certificate which only has the public
> key
> in it to the certificate store the message is decrypted and allowed
> through
> the SOAP filters.
>
> This is a pretty big problem as public certificates are intended to be
> just
> that, "Public", and be publicly available by some means. So what good is
> encrypting a message if anyone with the public certificate is able to
> decrypt
> it? Is there a setting I am not aware of?
>
> Thanks
> John Wieland jwieland@xxxxxxxxxxxxx

.

Follow-Ups:
- Re: Encryption Problem
  - From: John

References:
- Encryption Problem
  - From: John Wieland

Prev by Date: Programmatic config of StoreLocation instead of app.config
Next by Date: lifetime of WSE 2.0?
Previous by thread: Encryption Problem
Next by thread: Re: Encryption Problem
Index(es):
- Date
- Thread

Relevant Pages

[OT] Re: Basic question about Public Private Key Pairs
... > and private keys allow me to decrypt, but vice versa is not possible (or ... a public key and a corresponding private key. ... You can encrypt something with each key; ...
(microsoft.public.dotnet.security)
Re: Encrypting Messages
... and private key situation, ... You encrypt a messages using SOMEONE ELSE's public key. ... > person that can decrypt that message is the one that has the matching ... > Use the public key from your certificate. ...
(microsoft.public.outlook)
Re: Back Doors
... >> Design into the system a master key. ... Encrypt that with public key. ... Decrypt random symmetric key with private key. ...
(sci.crypt)
Re: DRA is Decrypting Files when it shouldnt be!!!
... > EFS is allowing the RA to decrypt 200 files that were encrypted BEFORE an RA ... > encryption to get the RA to decrypt encrypted files. ... the default RA certificate was used. ... certificate and private key only when needed). ...
(microsoft.public.windowsxp.security_admin)
Re: More on learning "Public Key Authentication"
... let me say that in public key ... >> encrypt the result with Alice's public key. ... >> is sent to Alice who decrypts the message with her private key (which ... > encrypted with my private key and they can then decrypt it with the ...
(comp.sys.mac.system)