Download
1 / 5
50 likes | 159 Vues
This tutorial on PKCS #8, authored by Magnus Nyström in October 1999, outlines the syntax for private key information. It is widely adopted for protecting private key information in software and serves as a predecessor to PKCS #12. The standard specifies types for private key information, detailing the algorithm used and attributes linked with the key, along with methods for BER encoding and encryption. While it remains “algorithm-neutral,” it provides guidance on representing keys beyond RSA and D-H. For more information, visit http://www.rsasecurity.com/rsalabs/pkcs.
E N D
RSA Laboratories’ PKCS Series - a Tutorial PKCS #8 Magnus Nyström, October, 1999
Private-Key Information Syntax Standard • Specifies a syntax for private key information • Widely used to protect private key information in software • Predecessor of PKCS #12 • Private key information: • private key • information about used algorithm • a (possibly empty) set of attributes associated with the key
version privateKeyAlgorithm privateKey attributes The PrivateKeyInfo type
The encryptedPrivateKeyInfo type • The privateKeyInfo type is BER-encoded and then encrypted • Suggested algorithms are from PKCS #5 (password-based encryption) encryptionAlgorithm encryptedData
Wither PKCS #8? • V1.2 available at • http://www.rsasecurity.com/rsalabs/pkcs • No planned changes, PKCS #8 is “algorithm-neutral”, but information on how to represent keys other than RSA (and D-H) keys may be useful
