StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POpublic key cryptograpy with Java and OpenSSL
primarykey
Id
4914196
data
AcceptedAnswerId
4988350
AnswerCount
2
ClosedDate
CommentCount
0
CommunityOwnedDate
CreationDate
2011-02-06T15:29:43.483
FavoriteCount
1
LastActivityDate
2011-02-14T02:26:23.007
LastEditDate
2011-02-14T01:39:15.893
LastEditorUserId
225757
OwnerUserId
225757
ParentId
0
PostTypeId
1
Score
2
ViewCount
3645
LastEditorDisplayName
text
Body
In an application I want to store sensitive data (which can be arbitrarily large) so that it can later be used for researching. The point is that I don't want the data to lie around unprotected, so I want to encrypt it before saving it. On another computer (in a more trustworthy environment) I want to decrypt that data later. The decryption should be possible with readily available tools, for example OpenSSL. Now my question is: How do I do all that? I already know the abstract steps: <ol> <li>Once and for all generate a public/private key pair.</li> <li>Encrypt a <code>byte[]</code> in Java using the public key, store it somewhere.</li> <li>Copy the encrypted data to a "safer" computer.</li> <li>Decrypt the saved data using a simple OpenSSL command line.</li> </ol> What I'm missing now are the details: <ul> <li>What kind of key pair do I need?</li> <li>What encryption scheme should I use? (it's probably something like "rsa-encrypt a symmetric key, then encrypt the data with that key")</li> <li>How does the simple OpenSSL command line look like?</li> </ul> [Update 2011-02-13] After a little research I found a page that describes exactly what I want to do: <a href="http://blog.altudov.com/2010/09/27/using-openssl-for-asymmetric-encryption-of-backups/" rel="nofollow">http://blog.altudov.com/2010/09/27/using-openssl-for-asymmetric-encryption-of-backups/</a>. Basically the answer to my step 4 is this command line: <pre><code>openssl smime -decrypt \ -in data.smime -binary -inform DER \ -inkey key.pem \ -out data </code></pre> Now my question is: How can I generate a file from Java whose format is compatible to OpenSSL so I can decompress it using this command line? I want to do this hundrets of times per second, so invoking an external process seems too slow. That's why I want to do it directly in Java.
Tags
<java><openssl><public-key-encryption>
Title
public key cryptograpy with Java and OpenSSL
singulars
PostAcceptedAnswerId
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. USRoland Illig
UserOwnerUserId
1. USRoland Illig
plurals
PostLinksPostIdRelatedPostId
1. PL
 singulars
 LinkTypeLinkTypeId
 LTLinked
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
2. PO
 singulars
 PostTypePostTypeId
 PTAnswer
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 POpublic key cryptograpy with Java and OpenSSL
 UserUserId
 USNeo
 VoteTypeVoteTypeId
 VTFavorite
2. VO
 singulars
 PostPostId
 POpublic key cryptograpy with Java and OpenSSL
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
3. VO
 singulars
 PostPostId
 POpublic key cryptograpy with Java and OpenSSL
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId
1. This table or related slice is empty.

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.