I have a key pair and I use private key to encrypt the data, public key for decryption. Is it possible to provide confidentiality in this setup ?
Asked
Active
Viewed 28 times
0
-
1You're not "encrypting" with a private key, you're signing. You're not "decrypting" with a public key, you're verifying the signature. – Bruno May 21 '14 at 10:13
-
This question has nothing to do with SSL. – user207421 May 16 '15 at 01:17
2 Answers
3
No, it's not. You must encrypt data using recipient's public key to have confidentiality. Now all you have are integrity and authenticity (you've got a variation of digital signature, actually)
DarkWanderer
- 8,739
- 1
- 25
- 56
0
In the setup that you're asking about, anyone who had access to the recipient's public key (which could be a lot of people if it's truly public) could then decrypt the message, so no, there is no real confidentiality.
If you want to provide both authenticity and confidentiality, you might try encrypting the data with the recipient's public key in order to provide confidentiality, then encrypting (or signing) that with your private key. The recipient would then decrypt (or verify) that data by decrypting it with your public key, thus indicating that the data really came from you, and then decrypting that data using their private key thus helping to ensure confidentiality.
John Hodge
- 1,645
- 1
- 13
- 13