Skip to content

Encryption

Directory actions

More options

Directory actions

More options

Latest commit

 

History

History

Encryption

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
Evolution of SSL and TLS.jpg
Evolution of SSL and TLS.jpg
 
 
README.md
README.md
 
 

README.md

Encryption

GPG - GNU Privacy Guard

gpg --list-keys                                        #list all keys
gpg --list-keys 1234ABCD123                            #list this specific key
gpg --encrypt -r recipient@example.com > mysecretfile  #encrypt mysecretfile with recipients associated key
gpg --decrypt < mysecretfile                           #decrypt obviosly

OpenSSL

  • Create a certificate: sudo openssl req -x509 -nodes -days 730 -newkey rsa:2048 -keyout 1.key -out 1.crt
  • Convert it from cert to pfx: openssl pkcs12 -export -out crt.pfx -inkey my_star_domain.key -in my_star_domain.crt -certfile my_star_domain.crt.chained
  • Useful openssl commands to view certificate content
  • Verify certs:
openssl x509 -noout -text -in name.crt
openssl x509 -noout -text -in name.crt.chained
  • Encrypt something - Method one
openssl genrsa -out key.txt 2048                                    #Generate a 2048-bit RSA key and store it in key.txt
echo "Hello!" | openssl rsautl -inkey key.txt -encrypt > output.bin #Encrypt "Hello!" using the key
openssl rsautl -inkey key.txt -decrypt <output.bin                  #Decrypt the message
  • Encrypt something - Method two
#Generate a private/public key pair
openssl genrsa -out rsa_key.pri 2048; openssl rsa -in rsa_key.pri -out rsa_key.pub -outform PEM -pubout

#Encrypt the string using public key, and store in a file 
echo "stockexchange.com" | openssl rsautl -encrypt -inkey rsa_key.pub -pubin -out secret.dat

#Un-encrypt using private key
string=`openssl rsautl -decrypt -inkey rsa_key.pri -in secret.dat `; echo $string
stockexchange.com

TLS